PyPI Attack: ChatGPT, Claude Impersonators Deliver JarkaStealer via Python Libraries

/in

Cybersecurity researchers have discovered two malicious packages uploaded to the Python Package Index (PyPI) repository that impersonated popular artificial intelligence (AI) models like OpenAI ChatGPT and Anthropic Claude to deliver an information stealer called JarkaStealer.
The packages, named gptplus and claudeai-eng, were uploaded by a user named “Xeroline” in November 2023, attracting

The Hacker News – ​Read More

Thai Court Dismisses Activist’s Suit Against Israeli Spyware Producer Over Lack of Evidence

/in

A Thai court dismissed a lawsuit brought by Jatupat Boonpattararaksa which alleged spyware made by NSO Group was used to hack his phone.

The post Thai Court Dismisses Activist’s Suit Against Israeli Spyware Producer Over Lack of Evidence appeared first on SecurityWeek.

SecurityWeek – ​Read More

Trustero Secures $10 Million in Funding to Grow AI-Powered Security and Compliance Platform

/in

The company emerged from stealth mode in March 2022 and has been on a mission to help companies reduce compliance cost and handle time-consuming GRC tasks.

The post Trustero Secures $10 Million in Funding to Grow AI-Powered Security and Compliance Platform appeared first on SecurityWeek.

SecurityWeek – ​Read More

Cross-Site Scripting Is 2024’s Most Dangerous Software Weakness

/in

MITRE and CISA’s 2024 list of the 25 most dangerous software weaknesses exposes the need for organizations to continue to invest in secure code.

darkreading – ​Read More

Hackers break into Andrew Tate’s online ‘university,’ steal user data and flood chats with emojis

/in

Hackers have breached an online course founded by ostensible influencer and self-described misogynist Andrew Tate, leaking data on close to 800,000 users, including thousands of email addresses and private user chat logs. The Daily Dot, which broke the news Thursday, reported that the hackers accessed the user data, then flooded the online course’s chatroom with […]

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

Cloud Security Startup Wiz to Acquire Dazz in Risk Management Play

/in

Dazz’s remediation engine will boost risk management in Wiz’s cloud security portfolio.

darkreading – ​Read More

Gambling and lottery giant disrupted by cyberattack, working to bring systems back online

/in

International Game Technology (IGT) notified the U.S. Securities and Exchange Commission on Tuesday that it became aware of the cyberattack when it “experienced disruptions in portions of its internal information technology systems and applications” on Sunday.

The Record from Recorded Future News – ​Read More