Artificial Intelligence Microsoft AI Researchers Expose 38TB of Data, Including Keys, Passwords and Internal Messages Exposed data includes backup of employees workstations, secrets, private keys, passwords, and over 30,000 internal Microsoft Teams messages. Ryan NaraineSeptember 18, 2023
Cybercrime MGM Hackers Broadening Targets, Monetization Strategies The financially motivated UNC3944 group that hacked MGM has hit at least 100 organizations, mainly in the US and Canada. Ionut ArghireSeptember 15, 2023
Ransomware Ransomware Gang Takes Credit for Disruptive MGM Resorts Cyberattack A known ransomware gang has taken credit for the highly disruptive cyberattack on MGM Resorts, and the company has yet to restore impacted systems. Eduard KovacsSeptember 14, 2023
Artificial Intelligence Tech Industry Leaders Endorse Regulating Artificial Intelligence at Rare Summit in Washington Tech executives discussed the idea of government regulations for artificial intelligence (AI) at an unusual closed-door meeting in the U.S. Senate on September 13th. Associated PressSeptember 13, 2023
Cybercrime Airbus Launches Investigation After Hacker Leaks Data Airbus has launched an investigation after a hacker claimed to have breached the company’s systems and leaked some business documents. Eduard KovacsSeptember 13, 2023
Malware & Threats After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery After Apple and Google, Mozilla has also patched an image processing-related zero-day vulnerability exploited by spyware. Eduard KovacsSeptember 13, 2023
Vulnerabilities Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters Google has released a Chrome 116 security update to patch CVE-2023-4863, the fourth Chrome zero-day vulnerability documented in 2023. Ionut ArghireSeptember 12, 2023
Malware & Threats Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks Cisco is warning of a zero-day vulnerability in Cisco ASA and FTD that can be exploited remotely, without authentication, in brute force attacks. Ionut ArghireSeptember 8, 2023
Cloud Security Crash Dump Error: How a Chinese Espionage Group Exploited Microsoft’s Mistakes Microsoft reveals how a crash dump from 2021 inadvertently exposed a key that Chinese cyberspies later leveraged to hack US government emails. Ryan NaraineSeptember 6, 2023
Mobile & Wireless Android Zero-Day Patched With September 2023 Security Updates Android’s September 2023 security update resolves a high-severity elevation of privilege vulnerability exploited in malicious attacks. Ionut ArghireSeptember 6, 2023
Identity & Access Okta Says US Customers Targeted in Sophisticated Attacks Okta says some of its US-based customers have been targeted in social engineering attacks whose goal was to disable MFA and obtain high privileges. Eduard KovacsSeptember 5, 2023
Cyberwarfare Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices Five Eyes report details 'Infamous Chisel' malware used by Russian state-sponsored hackers to target the Ukrainian military’s Android devices. Eduard KovacsAugust 31, 2023