Toggle light / dark theme

Paper Werewolf Deploys PowerModul Implant in Targeted Cyberattacks on Russian Sectors

The threat actor known as Paper Werewolf has been observed exclusively targeting Russian entities with a new implant called PowerModul.

The activity, which took place between July and December 2024, singled out organizations in the mass media, telecommunications, construction, government entities, and energy sectors, Kaspersky said in a new report published Thursday.

Paper Werewolf, also known as GOFFEE, is assessed to have conducted at least seven campaigns since 2022, according to BI.ZONE, with the attacks mainly aimed at government, energy, financial, media, and other organizations.

Hunters International shifts from ransomware to pure data extortion

The Hunters International Ransomware-as-a-Service (RaaS) operation is shutting down and rebranding with plans to switch to date theft and extortion-only attacks.

As threat intelligence firm Group-IB revealed this week, the cybercrime group remained active despite announcing on November 17, 2024, that it was shutting down due to declining profitability and increased government scrutiny.

Since then, Hunters International has launched a new extortion-only operation known as “World Leaks” on January 1, 2025.

DARPA adds 18 companies to spooky science Quantum Benchmarking Initiative

“No two ways about it,” Altepeter told Breaking Defense today. “The number of companies that we’re announcing is a surprise to me. I did not expect we would get this many.”

For the winning teams, the value of QBI is not just the money. Indeed, first-round grants like those being announced today have typically been under $1 million — small change not just for the Pentagon but for tech firms and venture capitalists already investing billions into quantum ventures. We suggested everybody apply for a million, [but] some people came in and said they were going to do it for less, Altepeter said.

The unique value of a QBI award is that it gives the winning companies access to a DARPA-led team of quantum experts, pulled from both US government labs, including the famous Los Alamos, and federally funded research institutions. Their job is to act as independent testers, fresh eyes, and devil’s advocates, rigorously scrutinizing each participant’s quantum strategy.

Creative Rights In AI Coalition launches to protect copyright in government policy on generative AI

A new coalition of rights-holders has called on the government to support growth in the creative and tech sectors by protecting copyright ahead of an imminent AI consultation.

The BPI, PRS For Music, PPL, MPA and UK Music are among the group of publishers, authors, artists, music businesses, specialist interest publications, unions and photographers.

Launching today, the Creative Rights In AI Coalition has published three key principles for copyright and generative AI policy and a statement supported by all member organisations. The coalition is calling on government to adopt the principles as a framework for developing AI policy.

Here’s my take: I was in the music industry for many years, so I know how it operates. People pay royalties every time an artists music is used. My friend Ayub Ogada made an ungodly amount of money from only one album that supported him all the way past death. His music still generates rotalties. Much of it was due to the smarts of Rob Bozas who ran royalties for Peter Gabriel’s Real World Records. AI companies also will have to start paying royalties to creatives whose intellectual property they use to train their AI just like royalties are paid in the music industry. Many AI companies may not be as profitable as many may think due to liabilities from use of intellectual property to train the AI, as without the content the AI could not be trained. Many lawsuits will happen in the foreseeable future.

‘Essential’ for critical infrastructure to prepare for severe space weather as 10% chance in decade

The warning came from one of the co-authors of the Space Weather Instrumentation, Measurement, Modelling and Risk (SWIMMR) S6 project group’s Severe space weather impacts on UK critical national infrastructure report, which was funded by the government.

The report said the government, regulators and CNI operators must “develop space weather preparedness plans” for CNI.

Space weather “is caused by disturbances from active regions of the Sun”, the report says.

Bill Gates signs deal with Indian province to boost agri, health

The provincial government of Andhra Pradesh (AP) in India has entered into a Memorandum of Understanding (MoU) with the Gates Foundation to advance the use of technology in various sectors, including healthcare, agriculture, and education. The agreement was discussed in a meeting between AP Chief Minister N. Chandrababu Naidu and Bill Gates, the Foundation’s chair. Naidu reiterated his administration’s dedication to utilizing innovative technology to propel the state’s development.

The MoU focuses on applying technology in ways that will benefit the public, emphasizing affordable and scalable solutions across essential sectors such as healthcare, medical technology, education, and agriculture. According to Naidu, the collaboration will harness the power of artificial intelligence (AI) to enhance predictive health analytics and automate diagnostic processes. In the agricultural sector, AI-based platforms for expert guidance and satellite technology will be employed to optimize farming practices and resource management through precision agriculture techniques.

“This MoU formalises a strategic collaboration in which the Gates Foundation will provide support to implementation partners, co-identified with the AP government, for targeted interventions within state-driven programmes,” Naidu said.

Oracle customers confirm data stolen in alleged cloud breach is valid

Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid.

Last week, a person named ‘rose87168’ claimed to have breached Oracle Cloud servers and began selling the alleged authentication data and encrypted passwords of 6 million users. The threat actor also said that stolen SSO and LDAP passwords could be decrypted using the info in the stolen files and offered to share some of the data with anyone who could help recover them.

The threat actor released multiple text files consisting of a database, LDAP data, and a list of 140,621 domains for companies and government agencies that were allegedly impacted by the breach. It should be noted that some of the company domains look like tests, and there are multiple domains per company.