Lifeboat News: The Blog – Safeguarding Humanity

New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

May 30
2025

Cybersecurity researchers have taken the wraps off an unusual cyber attack that leveraged malware with corrupted DOS and PE headers, according to new findings from Fortinet.

The DOS (Disk Operating System) and PE (Portable Executable) headers are essential parts of a Windows PE file, providing information about the executable.

While the DOS header makes the executable file backward compatible with MS-DOS and allows it to be recognized as a valid executable by the operating system, the PE header contains the metadata and information necessary for Windows to load and execute the program.

Read more | >

DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

May 30
2025

DragonForce exploited three SimpleHelp CVEs to hijack an MSP’s RMM tool, steal data, and deploy ransomware on customer systems.

Read more | >

Cybercriminals exploit AI hype to spread ransomware, malware

Posted by Saúl Morales Rodriguéz in cybercrime/malcode, robotics/AI | Leave a Comment on Cybercriminals exploit AI hype to spread ransomware, malware

May 30
2025

Threat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads.

This development follows a trend that has been growing since last year, starting with advanced threat actors using deepfake content generators to infect victims with malware.

These lures have become widely adopted by info-stealer malware operators and ransomware operations attempting to breach corporate networks.

Read more | >

Threat actors abuse Google Apps Script in evasive phishing attacks

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on Threat actors abuse Google Apps Script in evasive phishing attacks

May 30
2025

Threat actors are abusing the ‘Google Apps Script’ development platform to host phishing pages that appear legitimate and steal login credentials.

This new trend was spotted by security researchers at Cofense, who warn that the fraudulent login window is “carefully designed to look like a legitimate login screen.”

“The attack uses an email masquerading as an invoice, containing a link to a webpage that uses Google Apps Script, a development platform integrated across Google’s suite of products,” Cofense explains.

Read more | >

Apple Safari exposes users to fullscreen browser-in-the-middle attacks

Posted by Saúl Morales Rodriguéz in futurism | Leave a Comment on Apple Safari exposes users to fullscreen browser-in-the-middle attacks

May 30
2025

A weakness in Apple’s Safari web browser allows threat actors to leverage the fullscreen browser-in-the-middle (BitM) technique to steal account credentials from unsuspecting users.

By abusing the Fullscreen API, which instructs any content on a webpage to enter the browser’s fullscreen viewing mode, hackers can exploit the shortcoming to make guardrails less visible on Chromium-based browsers and trick victims into typing sensitive data in an attacker-controlled window.

SquareX researchers observed an increase use of this type of malicious activity and say that such attacks are particularly dangerous for Safari users, as Apple’s browser fails to properly alert users when a browser window enters fullscreen mode.

Read more | >

US sanctions firm linked to cyber scams behind $200 million in losses

Posted by Saúl Morales Rodriguéz in habitats | Leave a Comment on US sanctions firm linked to cyber scams behind $200 million in losses

May 30
2025

The U.S. Treasury Department has sanctioned Funnull Technology, a Philippines-based company that supports hundreds of thousands of malicious websites behind cyber scams linked to over $200 million in losses for Americans.

Funnull facilitated virtual currency investment scams (also known as romance baiting and pig butchering) by buying IP addresses in bulk from various cloud service providers. The company sold these IP addresses and hosting services to cybercriminals, enabling them to host malicious websites.

Criminals behind pig butchering scams contact victims through dating sites, social media, and messaging apps, building trust and luring victims into fake investment schemes. However, instead of investing, the fraudsters divert it to accounts they control, stealing their money.

Read more | >

Recovery is still possible for critically endangered Hawaiian honeycreeper with urgent intervention

Posted by Shubham Ghosh Roy in biological, existential risks, genetics | Leave a Comment on Recovery is still possible for critically endangered Hawaiian honeycreeper with urgent intervention

May 30
2025

A new study, led by San Diego Zoo Wildlife Alliance, Smithsonian’s National Zoo & Conservation Biology Institute, and additional researchers, offers a unique lens for understanding the unprecedented extinction crisis of native Hawaiian forest birds.

Just 17 out of approximately 60 species of the iconic honeycreeper remain, most of which are facing rapid decline due to avian malaria. The findings, published in Current Biology, include new evidence that there is still time to save the critically endangered honeycreeper ‘akeke’e—but the window is rapidly closing.

“In a race against time to save the remaining honeycreepers, necessary insights about their survival are found in their genetic makeup,” said Christopher Kyriazis, Ph.D., lead author and postdoctoral researcher from San Diego Zoo Wildlife Alliance. “Our findings provide a new understanding of the last remaining individuals as recovery efforts forge on in their native forests and in human care.”

Read more | >

AI doesn’t know ‘no’ — and that’s a huge problem for medical bots

Posted by Shubham Ghosh Roy in biotech/medical, robotics/AI | Leave a Comment on AI doesn’t know ‘no’ — and that’s a huge problem for medical bots

May 30
2025

Many AI models fail to recognise negation words such as “no” and “not”, which means they can’t easily distinguish between medical images labelled as showing a disease and images labelled as not showing the disease

Read more | >

New study identifies gateway to conscious perception

Posted by Shubham Ghosh Roy in neuroscience | Leave a Comment on New study identifies gateway to conscious perception

May 30
2025

Researchers investigating the thalamus and its role in consciousness believe the area acts as a ‘gate’ to stimuli that reach, or don’t reach, conscious perception.

Read more | >

Citrus derivative makes transparent wood 100 percent renewable

Posted by Omuterema Akhahenda in innovation, materials | Leave a Comment on Citrus derivative makes transparent wood 100 percent renewable

May 30
2025

Five years after introducing see-through wood building material, researchers in Sweden have taken it to another level. They found a way to make their composite 100 percent renewable – and more translucent – by infusing wood with a clear bio-plastic made from citrus fruit.

Since it was first introduced in 2016, transparent wood has been developed by researchers at KTH Royal Institute of Technology as one of the most innovative new structural materials for building construction. It lets natural light through and.

The key to making wood into a transparent composite material is to strip out its lignin, the major light-absorbing component in wood. But the empty pores left behind by the absence of lignin need to be filled with something that restores the wood’s strength and allows light to permeate.

Read more | >