Google’s AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source Projects

/in

Google has revealed that its AI-powered fuzzing tool, OSS-Fuzz, has been used to help identify 26 vulnerabilities in various open-source code repositories, including a medium-severity flaw in the OpenSSL cryptographic library.
“These particular vulnerabilities represent a milestone for automated vulnerability finding: each was found with AI, using AI-generated and enhanced fuzz targets,”

The Hacker News – ​Read More

NodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card Data

/in

Threat hunters are warning about an updated version of the Python-based NodeStealer that’s now equipped to extract more information from victims’ Facebook Ads Manager accounts and harvest credit card data stored in web browsers.
“They collect budget details of Facebook Ads Manager accounts of their victims, which might be a gateway for Facebook malvertisement,” Netskope Threat Labs researcher

The Hacker News – ​Read More

US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work

/in

Trump promised in his presidential campaign platform to “repeal Joe Biden’s dangerous Executive Order that hinders AI Innovation, and imposes Radical Leftwing ideas on the development of this technology.”

The post US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work appeared first on SecurityWeek.

SecurityWeek – ​Read More

FBI says BianLian based in Russia, moving from ransomware attacks to extortion

/in

The ransomware group has drawn scrutiny for attacks on charities like Save The Children as well as healthcare firms like Boston Children’s Health Physicians. On Tuesday, it took credit for an attack on a Canadian healthcare company.

The Record from Recorded Future News – ​Read More

Phobos ransomware indictment sheds light on long-running, quietly successful scheme

/in

The document sheds light on a durable cybercrime operation that has drawn serious attention from security researchers and law enforcement agencies, even though it has kept a lower profile than other ransomware gangs.

The Record from Recorded Future News – ​Read More

It’s Near-Unanimous: AI, ML Make the SOC Better

/in

Efficiency is the name of the game for the security operations center — and 91% of cybersecurity pros say AI and ML are winning that game.

darkreading – ​Read More

China’s ‘Liminal Panda’ APT Attacks Telcos, Steals Phone Data

/in

In US Senate testimony, a CrowdStrike exec explained how this advanced persistent threat penetrated telcos in Asia and Africa, gathering SMS messages, unique identifiers, and other metadata along the way.

darkreading – ​Read More

SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024

/in

Palo Alto, California, 20th November 2024, CyberNewsWire

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Five members of Scattered Spider cybercrime group charged for breaches, theft of $11 million

/in

Court documents say the five — who live in the U.S. and U.K. — are accused of stealing $11 million worth of cryptocurrency from at least 29 victims in addition to taking troves of corporate documents out of company systems.

The Record from Recorded Future News – ​Read More

US charges five accused of multi-year hacking spree targeting tech and crypto giants

/in

The five alleged hackers are accused of stealing millions of dollars in crypto, and corporate data from several victims all over the world.

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More