Google announced a substantial overhaul to its spam policies for search yesterday, introducing a crackdown on AI content.
Category: cybercrime/malcode – Page 54
Russian state-backed hackers breached Microsoft’s core software systems, company says
A Russian state-backed group that Microsoft said hacked into its corporate email accounts was able to gain access to its core software systems, the company announced on Friday.
Microsoft said its security team detected the attack in January and identified the group responsible as Midnight Blizzard, “the Russian state-sponsored actor also known as Nobelium.”
“In recent weeks, we have seen evidence that Midnight Blizzard is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain, unauthorized access,” Microsoft said in a blog post update on Friday. “This has included access to some of the company’s source code repositories and internal systems.”
Transform Data Into Knowledge With Generative AI
Generative AI is quickly transforming the way we do things in almost every facet of life, including the evolving landscape of data management and cybersecurity. Cohesity, a company focused on AI-powered data management and security, launched Cohesity Gaia to apply generative AI in a unique way designed to enable customers to access, analyze, and interact with their data.
Cohesity Gaia is a generative AI-powered conversational search assistant. Cohesity blends Large Language Models with an enterprise’s own data and provides organizations with a tool to interact with and extract value from their information repositories. The platform is designed to enable natural language interactions, making it easier for users to query their data without needing to navigate complex databases or understand specialized query languages.
At its heart, Cohesity Gaia leverages generative AI to facilitate conversational interactions with data. Instead of searching through files or databases in the traditional manner, users can engage in a dialogue with the data, asking questions and receiving contextually relevant, accurate answers.
Hackers abuse QEMU to covertly tunnel network traffic in cyberattacks
Malicious actors were detected abusing the open-source hypervisor platform QEMU as a tunneling tool in a cyberattack against a large company.
QEMU is a free emulator and hypervisor that allows you to run other operating systems as guests on a computer.
As part of the attack, threat actors used QEMU to create virtual network interfaces and a socket-type network device to connect to a remote server. This allowed the threat actors to create a network tunnel from the victim’s system to the attacker’s server with negligible impact on system performance.
Researchers Create AI-Powered Malware That Spreads on Its Own
Researchers have developed a computer “worm” that can spread from one computer to another using generative AI, a warning sign that the tech could be used to develop dangerous malware in the near future — if it hasn’t already.
As Wired reports, the worm can attack AI-powered email assistants to obtain sensitive data from emails and blast out spam messages that infect other systems.
“It basically means that now you have the ability to conduct or to perform a new kind of cyberattack that hasn’t been seen before,” Cornell Tech researcher Ben Nassi, coauthor of a yet-to-be-peer-reviewed paper about the work, told Wired.
