Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: cybercrime/malcode

Dream, a company focused on artificial intelligence (AI)-powered cybersecurity for nations and critical infrastructure, raised $100 million in a Series B funding round to expand into additional markets in which cyber threats pose challenges to national security.

The round valued Dream at $1.1 billion, the company said in a Monday (Feb. 17) press release.

Cyberattacks on critical infrastructure are becoming more common and more sophisticated, Sebastian Kurz, co-founder and president of Dream, and former prime minister of Austria, said in the release.

Read more | >

A major cybersecurity incident has exposed sensitive personal, medical and financial records of more than half a million Americans.

In a data breach notification, the Office of the Maine Attorney General says the California-based non-profit organization NorthBay Healthcare Corporation experienced an external system breach affecting 569,012 Americans.

In a notice sent to affected people, NorthBay Health says an unauthorized entity gained access to the firm’s computer systems between January 11th, 2024 and April 1st of the same year.

Read more | >

Your smartphone gallery may contain photos and screenshots of important information you keep there for safety or convenience, such as documents, bank agreements, or seed phrases for recovering cryptocurrency wallets. All of this data can be stolen by a malicious app such as the SparkCat stealer we’ve discovered. This malware is currently configured to steal crypto wallet data, but it could easily be repurposed to steal any other valuable information.

The worst part is that this malware has made its way into official app stores, with almost 250,000 downloads of infected apps from Google Play alone. Although malicious apps have been found in Google Play before, this marks the first time a stealer Trojan has been detected in the App Store. How does this threat work and what can you do to protect yourself?

Spectre-like SLAP and FLOP vulnerabilities in Apple CPUs can be used in real-world attacks.

Read more | >

Your smartphone gallery may contain photos and screenshots of important information you keep there for safety or convenience, such as documents, bank agreements, or seed phrases for recovering cryptocurrency wallets. All of this data can be stolen by a malicious app such as the SparkCat stealer we’ve discovered. This malware is currently configured to steal crypto wallet data, but it could easily be repurposed to steal any other valuable information.

The worst part is that this malware has made its way into official app stores, with almost 250,000 downloads of infected apps from Google Play alone. Although malicious apps have been found in Google Play before, this marks the first time a stealer Trojan has been detected in the App Store. How does this threat work and what can you do to protect yourself?

SparkCat infostealer infected apps in the App Store and Google Play. It scans photos on infected devices and steals crypto wallets.

Read more | >

In today’s AI news, the OpenAI commercial, developed under new CMO Kate Rouch, deliberately avoids mentioning AGI or superintelligence, which are at the core of OpenAI’s mission. “We want the message to feel relevant to the audience that is watching the Super Bowl, which includes tens of millions of people who have no familiarity with AI,” Rouch said.

S $254-billion software industry by 45% over the next five years, according to a survey by consulting firm EY India. This boost will come through the dual effect of the IT industry integrating elements of GenAI and client projects move from concept to production. + Then, the French government plans Monday to pledge a gigawatt of nuclear power for a new artificial-intelligence computing project expected to cost tens of billions of dollars. France is making a bid to catch up in the artificial intelligence race by leaning on one of its strengths: plentiful nuclear power.

And, Canadian investment firm Brookfield plans to invest €20 billion by 2030 in artificial intelligence projects in France (around $20.7 billion at current exchange rates), according to a report from La Tribune Dimanche confirmed by news agency AFP. The majority of the sum will be used to build AI-focused data centers.

In videos, we join Adrian Locher, Merantix Capital, Wei Li, BlackRock, Scott Sandell, NEA, Rob Heyvaert, Motive Partners, and Guru Chahal, Lightspeed Venture Partners, discussing how to identify the next category-defining opportunities in AI across venture capital, private equity, and beyond?

Is what happens when millions of people get access to a transformational general purpose technology such as artificial intelligence, enabling superpowers that benefit both individuals and society.” + Then, check out the cutting-edge world of “hackbots”—AI agents designed to autonomously hack websites. Joseph Thacker, Principal AI Engineer at AppOmni as well as a security researcher who specializes in application security and AI, discusses the basics of hackbots, the current landscape of the technology, and its potential future implications.

Continue reading “Inside OpenAI’s Million Super Bowl Ad” | >

In the incident analyzed by the Canadian cybersecurity company, the initial access was gained to a targeted endpoint via a vulnerable SimpleHelp RMM instance (“194.76.227[.]171”) located in Estonia.

Upon establishing a remote connection, the threat actor has been observed performing a series of post-exploitation actions, including reconnaissance and discovery operations, as well as creating an administrator account named “sqladmin” to facilitate the deployment of the open-source Sliver framework.

The persistence offered by Sliver was subsequently abused to move laterally across the network, establishing a connection between the domain controller (DC) and the vulnerable SimpleHelp RMM client and ultimately installing a Cloudflare tunnel to stealthily route traffic to servers under the attacker’s control through the web infrastructure company’s infrastructure.

Read more | >