Trend Micro researchers have identified a campaign conducted by the China-linked APT group Earth Baxia, which has targeted government organizations in Taiwan and other Asia-Pacific (APAC) countries. The threat actors have exploited a recently patched vulnerability in OSGeo GeoServer (CVE-2024-36401), allowing for remote code execution (RCE) via unsafe evaluation of XPath expressions.
In a major policy reversal, the popular messaging app Telegram has announced it will give users’ IP addresses and phone numbers to authorities in response to valid legal requests in an attempt to rein in criminal activity on the platform.
“We’ve made it clear that the IP addresses and phone numbers of those who violate our rules can be disclosed to relevant authorities in response to valid legal
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-24 08:07:102024-09-24 08:07:10Telegram Agrees to Share User Data With Authorities for Criminal Investigations
Unit 42 researchers have recently uncovered an ongoing campaign where the North Korea-linked APT group, Gleaming Pisces (also known as Citrine Sleet), is distributing the new PondRAT backdoor through infected Python packages. This brilliant campaign poses a significant threat, as the attackers are infecting packages in the Python Package Index (PyPI) repository, and use it to spread across supply…
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-24 07:07:352024-09-24 07:07:35Malicious Python Packages Deliver PondRAT Backdoor: North Korean Group Targets Developers
The group has used more than 30 custom tools to target high-value government and telecommunications organizations on behalf of Iranian intelligence services, researchers say.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-24 01:06:542024-09-24 01:06:54OpenAI tackles global language divide with massive multilingual AI dataset release
OpenAI’s official press account on X was compromised by cryptocurrency scammers. Or, at least that’s what appears to have happened. Late Monday afternoon, OpenAI Newsroom, an account OpenAI recently launched to spotlight product- and policy-related announcements, posted about a supposedly new OpenAI-branded blockchain token, “$OPENAI.” “[$OPEANAI bridges] the gap between Al and blockchain technology,” the […]
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-23 23:06:382024-09-23 23:06:38Crypto scammers hack OpenAI’s press account on X
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-23 21:06:402024-09-23 21:06:40Kaspersky Rolls Back for US Customers, Makes Way for UltraAV
Google said it has been contacted by several major U.S. companies recently who discovered that they unknowingly hired North Koreans using fake identities for remote IT roles.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-23 21:06:402024-09-23 21:06:40Dozens of Fortune 100 companies have unwittingly hired North Korean IT workers, according to report
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Geopolitical Cybernews Digest: Chinese APT Exploits GeoServer, Twelve Targets Russian Networks, UNC1860 Assists Iranian APTs
/in General NewsTrend Micro researchers have identified a campaign conducted by the China-linked APT group Earth Baxia, which has targeted government organizations in Taiwan and other Asia-Pacific (APAC) countries. The threat actors have exploited a recently patched vulnerability in OSGeo GeoServer (CVE-2024-36401), allowing for remote code execution (RCE) via unsafe evaluation of XPath expressions.
Source
TechSplicer Blog – Read More
Telegram Agrees to Share User Data With Authorities for Criminal Investigations
/in General NewsIn a major policy reversal, the popular messaging app Telegram has announced it will give users’ IP addresses and phone numbers to authorities in response to valid legal requests in an attempt to rein in criminal activity on the platform.
“We’ve made it clear that the IP addresses and phone numbers of those who violate our rules can be disclosed to relevant authorities in response to valid legal
The Hacker News – Read More
Malicious Python Packages Deliver PondRAT Backdoor: North Korean Group Targets Developers
/in General NewsUnit 42 researchers have recently uncovered an ongoing campaign where the North Korea-linked APT group, Gleaming Pisces (also known as Citrine Sleet), is distributing the new PondRAT backdoor through infected Python packages. This brilliant campaign poses a significant threat, as the attackers are infecting packages in the Python Package Index (PyPI) repository, and use it to spread across supply…
Source
TechSplicer Blog – Read More
Meet UNC1860: Iran’s Low-Key Access Broker for State Hackers
/in General NewsThe group has used more than 30 custom tools to target high-value government and telecommunications organizations on behalf of Iranian intelligence services, researchers say.
darkreading – Read More
OpenAI tackles global language divide with massive multilingual AI dataset release
/in General NewsOpenAI releases multilingual AI dataset evaluating 14 languages to expand global reach and accessibility of language models.Read More
Security News | VentureBeat – Read More
Hacker Leaks 12,000 Alleged Twilio Call Records with Audio Recordings
/in General NewsA hacker has leaked 12,000 alleged Twilio call records, including phone numbers and audio recordings. The breach exposes…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Crypto scammers hack OpenAI’s press account on X
/in General NewsOpenAI’s official press account on X was compromised by cryptocurrency scammers. Or, at least that’s what appears to have happened. Late Monday afternoon, OpenAI Newsroom, an account OpenAI recently launched to spotlight product- and policy-related announcements, posted about a supposedly new OpenAI-branded blockchain token, “$OPENAI.” “[$OPEANAI bridges] the gap between Al and blockchain technology,” the […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Microsoft Trims Cloud Cyberattack Surface in Security Push
/in General NewsThe company has jettisoned hundreds of thousands of unused apps and millions of unused tenants as part of its Secure Future Initiative.
darkreading – Read More
Kaspersky Rolls Back for US Customers, Makes Way for UltraAV
/in General NewsSome users complain they had no idea the switch would be automatic on their devices, vowing to uninstall the unwanted antivirus software.
darkreading – Read More
Dozens of Fortune 100 companies have unwittingly hired North Korean IT workers, according to report
/in General NewsGoogle said it has been contacted by several major U.S. companies recently who discovered that they unknowingly hired North Koreans using fake identities for remote IT roles.
The Record from Recorded Future News – Read More