Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: cybercrime/malcode – Page 64

Google Chrome now auto-upgrades to secure connections for all users

Google has taken a significant step towards enhancing Chrome internet security by automatically upgrading insecure HTTP requests to HTTPS requests for 100% of users.

This feature is called HTTPS-Upgrades and will secure old links that utilize the http:// by automatically attempting to first connect to the URL over the encrypted https:// protocol.

A limited rollout of this feature in Google Chrome began in July, but as of October 16th, Google has now rolled it out to all users on the Stable channel.

Boeing Breached by Ransomware, LockBit Gang Claims

https://informatech.co/3QEBncW by.

In a post on its leak site, prolific ransomware threat group LockBit claims that it breached Boeing, and said that it will start releasing sensitive data it purportedly stole from the company’s systems if ransom demands aren’t met by Nov. 2.

“A tremendous amount of sensitive data was exfiltrated and ready to be published if Boeing do (sic) not contact within deadline!” the LockBit post shared by cybersecurity analyst Dominic Alvieri read. “For now we will not send lists or samples to protect the company BUT we will not keep it like that until the deadline.”

The post included a countdown clock to the deadline.

OpenAI forms new team to assess “catastrophic risks” of AI

OpenAI’s new preparedness team will address the potential dangers associated with AI, including nuclear threats.

OpenAI is forming a new team to mitigate the “catastrophic risks” associated with AI. In an update on Thursday.

The team will also work to mitigate “chemical, biological, and radiological threats,” as well as “autonomous replication,” or the act of an AI replicating itself. Some other risks that the preparedness team will address include AI’s ability to trick humans, as well as cybersecurity threats.

We believe that frontier AI… More.

The preparedness team will address several potential threats.

ChatGPT-like AI can be tricked to produce malicious code, cyber attacks

Researchers demonstrate how Text-to-SQL systems can lead to cyber attacks.

A team of researchers from the University of Sheffield has demonstrated that popular artificial intelligence applications like OpenAI’s ChatGPT, among five others, can be manipulated to produce potentially harmful Structured Query Language (SQL) commands and can be exploited to attack computer systems in the real world.

The applications they used in their study included BAIDU-UNIT, ChatGPT, AI2SQL, AIHELPERBOT, Text2SQL, and ToolSKE.

Microsoft Warns as Scattered Spider Expands from SIM Swaps to Ransomware

Microsoft warns of Scattered Spider, a financially motivated hacking crew that infiltrates firms worldwide using SMS phishing, SIM swapping, and by posing as new employees, leading to data breaches and takeovers.

Find out more:

The prolific threat actor known as Scattered Spider has been observed impersonating newly hired employees in targeted firms as a ploy to blend into normal on-hire processes and takeover accounts and breach organizations across the world.

Microsoft, which disclosed the activities of the financially motivated hacking crew, described the adversary as “one of the most dangerous financial criminal groups,” calling out its operational fluidity and its ability to incorporate SMS phishing, SIM swapping, and help desk fraud into its attack model.

“Octo Tempest is a financially motivated collective of native English-speaking threat actors known for launching wide-ranging campaigns that prominently feature adversary-in-the-middle (AiTM) techniques, social engineering, and SIM swapping capabilities,” the company said.

FBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical Infrastructure

⚠️ ALERT: AvosLocker #ransomware targets US critical infrastructure. Recent joint advisory from CISA and FBI exposes their tactics — using open-source tools and stealthy techniques to compromise networks.

Read more 👉 https://thehackernews.com/2023/10/fbi-cisa-warn-of-rising-avoslocker.htm

The FBI and CISA issue advisory on AvosLocker ransomware gang. They use open-source tools, leave minimal traces.

Global STEM Initiative Chapter of Uganda

“Meet Kelvin Dafiaghor, a distinguished luminary in the fields of education and technology. As the Founder and Director of Ogba Educational Clinic in Nigeria, he has dedicated a decade to integrating AI and STEM education into African learning, particularly excelling in robotics and AI. His commitment extends globally, showcased by his participation in prestigious events like FINTECH Abu Dhabi in 2018 and a high-level conference in Morocco in 2019, where he advocated fervently for innovation and artificial intelligence as transformative forces in Africa. In 2021, he made a lasting impact at GISEC Dubai, emphasizing the role of AI in cybersecurity. Additionally, as the Regional Manager for Global STEM Initiative, he’s passionate about advancing STEM education worldwide. #gsiuganda #comingsoon Andrew Webb-Buffington KELVIN OGBA DAFIAGHORJosselin LavigneKasule RaphaelLorraine Tsitsi MajiriLily R. ASONGFACIvan Peter OtimKimani NyoikeGlobal STEM Initiative (GSI)RIIS LLC.