БЛОГ

Archive for the ‘cybercrime/malcode’ category: Page 112

Jul 28, 2021

Hiding malware inside AI neural networks

Posted by in categories: cybercrime/malcode, robotics/AI

A trio of researchers at Cornell University has found that it is possible to hide malware code inside of AI neural networks. Zhi Wang, Chaoge Liu and Xiang Cui have posted a paper describing their experiments with injecting code into neural networks on the arXiv preprint server.

As grows ever more complex, so do attempts by criminals to break into machines running new technology for their own purposes, such as destroying data or encrypting it and demanding payment from users for its return. In this new study, the team has found a new way to infect certain kinds of computer systems running artificial intelligence applications.

AI systems do their work by processing data in ways similar to the . But such networks, the research trio found, are vulnerable to infiltration by foreign code.

Jul 27, 2021

Microsoft Warns of LemonDuck Malware Targeting Windows and Linux Systems

Posted by in category: cybercrime/malcode

A notorious cross-platform crypto-mining malware has refined and improved its techniques to attack Windows and Linux operating systems.

Jul 26, 2021

‘Holy moly!’: Inside Texas’ fight against a ransomware hack

Posted by in categories: cybercrime/malcode, government, media & arts, mobile phones

DALLAS (AP) — It was the start of a steamy Friday two Augusts ago when Jason Whisler settled in for a working breakfast at the Coffee Ranch restaurant in the Texas Panhandle city of Borger. The most pressing agenda item for city officials that morning: planning for a country music concert and anniversary event.

Then Whisler’s phone rang. Borger’s computer system had been hacked.

Workers were frozen out of files. Printers spewed out demands for money. Over the next several days, residents couldn’t pay water bills, the government couldn’t process payroll, police officers couldn’t retrieve certain records. Across Texas, similar scenes played out in nearly two dozen communities hit by a cyberattack officials ultimately tied to a Russia-based criminal syndicate.

Jul 24, 2021

How Deepfakes Are Powering a New Type of Cyber Crime

Posted by in category: cybercrime/malcode

Making deepfakes is getting easier, and they’re more convincing than ever. Cybercriminals are using video and audio deepfakes to extort money from victims by adding a credible “fake authenticity” to their scams.

Ever since the first person said “the camera never lies,” there have been people out to prove otherwise. Creative photographers in the late 19th century used simple tricks to create faked images.

Continue reading “How Deepfakes Are Powering a New Type of Cyber Crime” »

Jul 22, 2021

XLoader Windows InfoStealer Malware Now Upgraded to Attack macOS Systems

Posted by in category: cybercrime/malcode

The XLoader Windows infostealer malware has now been upgraded to attack macOS users.

Jul 22, 2021

This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection

Posted by in category: cybercrime/malcode

Researchers warn about a new malware that hides among Windows Defender’s exclusions to evade detection by the antivirus program.

Jul 22, 2021

Home and office routers come under attack

Posted by in categories: business, cybercrime/malcode, habitats

Stealth recon and intrusion

On Wednesday, France’s National Agency for Information Systems Security—abbreviated as ANSSI—warned national businesses and organizations that the group was behind a massive attack campaign that was using hacked routers prior to carrying out reconnaissance and attacks as a means to cover up the intrusions.

“ANSSI is currently handling a large intrusion campaign impacting numerous French entities,” an ANSSI advisory warned. “Attacks are still ongoing and are led by an intrusion set publicly referred to as APT31. It appears from our investigations that the threat actor uses a network of compromised home routers as operational relay boxes in order to perform stealth reconnaissance as well as attacks.”

Jul 20, 2021

China accused of cyber-attack on Microsoft — BBC News

Posted by in category: cybercrime/malcode

The UK, US and EU have accused China of carrying out a major cyber-attack earlier this year on Microsoft Exchange email servers.

The attack affected at least 30000 organisations globally.

Continue reading “China accused of cyber-attack on Microsoft — BBC News” »

Jul 18, 2021

Private Israeli spyware used to hack cellphones of journalists, activists worldwide

Posted by in categories: business, cybercrime/malcode, military, mobile phones, surveillance

Military-grade spyware licensed by an Israeli firm to governments for tracking terrorists and criminals was used in attempted and successful hacks of 37 smartphones belonging to journalists, human rights activists, business executives and two women close to murdered Saudi journalist Jamal Khashoggi, according to an investigation by The Washington Post and 16 media partners.

The phones appeared on a list of more than 50000 numbers that are concentrated in countries known to engage in surveillance of their citizens and also known to have been clients of the Israeli firm, NSO Group, a worldwide leader in the growing and largely unregulated private spyware industry, the investigation found.

The list does not identify who put the numbers on it, or why, and it is unknown how many of the phones were targeted or surveilled. But forensic analysis of the 37 smartphones shows that many display a tight correlation between time stamps associated with a number on the list and the initiation of surveillance, in some cases as brief as a few seconds.

Jul 17, 2021

Disable Windows print spooler or you could be hacked, says Microsoft

Posted by in category: cybercrime/malcode

Facepalm: Microsoft is once again advising its customers to disable Windows print spooler, after a new vulnerability that allows hackers to execute malicious code on machines has emerged. While a patch fixing the flaw will be released in due course, the most effective workaround currently on the table is to stop and disable the print spooler service entirely.

This is the third print spooler vulnerability to emerge in just five weeks. While a critical flaw was originally identified and patched in June, a similar flaw – dubbed PrintNightmare – came to light shortly after and was subsequently patched (with mixed success).

Continue reading “Disable Windows print spooler or you could be hacked, says Microsoft” »