Plus: Russian spies keep hijacking other hackers’ infrastructure, Hydra dark web market admin gets life sentence in Russia, and more of the week’s top security news.
In yet another software supply chain attack, it has come to light that two versions of a popular Python artificial intelligence (AI) library named ultralytics were compromised to deliver a cryptocurrency miner.
The versions, 8.3.41 and 8.3.42, have since been removed from the Python Package Index (PyPI) repository. A subsequently released version has introduced a security fix that “ensures
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-07 12:08:512024-12-07 12:08:51Ultralytics AI Library Compromised: Cryptocurrency Miner Found in PyPI Versions
Cybersecurity researchers have warned of a new scam campaign that leverages fake video conferencing apps to deliver an information stealer called Realst targeting people working in Web3 under the guise of fake business meetings.
“The threat actors behind the malware have set up fake companies using AI to make them increase legitimacy,” Cado Security researcher Tara Gould said. “The company
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-07 09:06:542024-12-07 09:06:54Hackers Using Fake Video Conferencing Apps to Steal Web3 Professionals’ Data
In a historic decision, Romania’s constitutional court has annulled the result of the first round of voting in the presidential election amid allegations of Russian interference.
As a result, the second round vote, which was scheduled for December 8, 2024, will no longer take place. Călin Georgescu, who won the first round, denounced the verdict as an “officialized coup” and an attack on
Cybercriminals know that privileged accounts are the keys to your kingdom. One compromised account can lead to stolen data, disrupted operations, and massive business losses. Even top organizations struggle to secure privileged accounts. Why?
Traditional Privileged Access Management (PAM) solutions often fall short, leaving:
Blind spots that limit full visibility.
Complex deployment processes.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-06 23:07:282024-12-06 23:07:28Snyk hits $300M ARR but isn’t rushing to go public
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-06 22:06:542024-12-06 22:06:54Employee Data Access Behaviors Putting Australian Employers At Risk
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-06 22:06:542024-12-06 22:06:54Texas Teen Arrested for Scattered Spider Telecom Hacks
The activity-recording capability has drawn concerns from the security community and privacy experts, but the tech giant is being measured in its gradual rollout, which is still in preview mode.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-06 21:07:302024-12-06 21:07:30Microsoft Expands Access to Windows Recall AI Feature
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
New DroidBot Android Spyware Targeting Banking and Crypto Users
/in General NewsDroidBot, a sophisticated Android RAT, is targeting individuals and financial institutions across Europe.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US Officials Recommend Encryption Apps Amid Chinese Telecom Hacking
/in General NewsPlus: Russian spies keep hijacking other hackers’ infrastructure, Hydra dark web market admin gets life sentence in Russia, and more of the week’s top security news.
Security Latest – Read More
Ultralytics AI Library Compromised: Cryptocurrency Miner Found in PyPI Versions
/in General NewsIn yet another software supply chain attack, it has come to light that two versions of a popular Python artificial intelligence (AI) library named ultralytics were compromised to deliver a cryptocurrency miner.
The versions, 8.3.41 and 8.3.42, have since been removed from the Python Package Index (PyPI) repository. A subsequently released version has introduced a security fix that “ensures
The Hacker News – Read More
Hackers Using Fake Video Conferencing Apps to Steal Web3 Professionals’ Data
/in General NewsCybersecurity researchers have warned of a new scam campaign that leverages fake video conferencing apps to deliver an information stealer called Realst targeting people working in Web3 under the guise of fake business meetings.
“The threat actors behind the malware have set up fake companies using AI to make them increase legitimacy,” Cado Security researcher Tara Gould said. “The company
The Hacker News – Read More
Romania Cancels Presidential Election Results After Alleged Russian Meddling on TikTok
/in General NewsIn a historic decision, Romania’s constitutional court has annulled the result of the first round of voting in the presidential election amid allegations of Russian interference.
As a result, the second round vote, which was scheduled for December 8, 2024, will no longer take place. Călin Georgescu, who won the first round, denounced the verdict as an “officialized coup” and an attack on
The Hacker News – Read More
Learn How Experts Secure Privileged Accounts—Proven PAS Strategies Webinar
/in General NewsCybercriminals know that privileged accounts are the keys to your kingdom. One compromised account can lead to stolen data, disrupted operations, and massive business losses. Even top organizations struggle to secure privileged accounts. Why?
Traditional Privileged Access Management (PAM) solutions often fall short, leaving:
Blind spots that limit full visibility.
Complex deployment processes.
The Hacker News – Read More
Snyk hits $300M ARR but isn’t rushing to go public
/in General NewsSeveral factors indicate that Snyk, most recently valued at $7.4 billion, could IPO soon. But the CEO told us why it might not.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Employee Data Access Behaviors Putting Australian Employers At Risk
/in General NewsNew CyberArk research finds Australian employees choosing convenience over cyber security policies.
Security | TechRepublic – Read More
Texas Teen Arrested for Scattered Spider Telecom Hacks
/in General NewsAn FBI operation nabbed a member of the infamous cybercrime group, who is spilling the tea on ‘key Scattered Spider members’ and their tactics.
darkreading – Read More
Microsoft Expands Access to Windows Recall AI Feature
/in General NewsThe activity-recording capability has drawn concerns from the security community and privacy experts, but the tech giant is being measured in its gradual rollout, which is still in preview mode.
darkreading – Read More