Log4Shell is still a threat but it’s mostly being used for crypto mining and knocking out websites.
Guest contributor, Brian Wallace writes about the rising threat from cyber attackers who in 2021 have cost organizations over $20 billion.
The trial started in March 2021 and was completed in early 2022.
The hackers who struck Nvidia last week have released source code related to DLSS into the wild.
But no other genuine details have so far made it out of the stolen data folder.
The reported Nvidia hack has allegedly thrown up the codenames of a bunch of next-gen GPUs, which have now been leaked out to the press. The most pertinent ones for us would be the Lovelace GeForce GPUs, of which there are six listed, but here are also listings for the server-based Hopper and Blackwell GPUs. This looks to have come from an initial leak of some of the stolen documents, supplied to Videocardz.
The green team is allegedly being held to ransom over the Ethereum hash rate limiter attached to its most recent graphics card release after hacking group, Lapsus$, made off with around 1TB of sensitive data.
A new, third, data wiper malware — dubbed “IsaacWiper” — is now targeting Ukrainian governmental systems.
Teabot android banking malware spreads again through google play store apps.
An Android banking trojan designed to steal credentials and SMS messages has been observed once again sneaking past Google Play Store protections to target users of more than 400 banking and financial apps, including those from Russia, China, and the U.S.
But they also request that Nvidia remove the mining performance limiter itself.
Following last week’s purported hack conducted by South-America-based Lapsus$ group, the hackers have now started to release data obtained from the 1 TB-worth of stolen information — and threaten to release a mining performance unlocker should Nvidia not do it first.
The hackers claimed that the attack was to “slow down the transfer” of troops moving from Belarus to northern Ukraine, saying that they had put the trains in “manual control” mode which would “significantly slow down the movement of trains, but will not create emergency situations.”
An ideological aversion to high-stakes situations has been expressed by other hacking groups. Anonymous, which has claimed a number of attacks on Russia’s banks and services, the websites of the President of the Russian Federation and Russia’s Ministry of Defence, has said that critical infrastructure is a “no-go” due to the risk of exacerbating the already tumultuous situation in eastern Europe.
Sergei Voitehowich, a former employee of Belarus’s state-owned Belarus Railway company, said that the Cyber Partisans had damaged the train traffic control system and that while it has been restored, other systems were experiencing issues and making it “impossible to buy tickets”, according to Bloomberg.
The “most advanced piece of malware” that China-linked hackers have ever been known to use was revealed today. Dubbed Daxin, the stealthy back door was used in espionage operations against governments around the world for a decade before it was caught.
But the newly discovered malware is no one-off. It’s yet another sign that a decade-long quest to become a cyber superpower is paying off for China. While Beijing’s hackers were once known for simple smash-and-grab operations, the country is now among the best in the world thanks to a strategy of tightened control, big spending, and an infrastructure for feeding hacking tools to the government that is unlike anything else in the world.
