Cybercrime/malcode – Lifeboat News: The Blog

Dec 18
2022

AI-armed cyberattacks may get lethal in next 5 years, warns report

AI-powered assaults will definitely excel at impersonation, a tactic utilized frequently in phishing, as per the study.

A recent cyber analytical report has warned that artificial intelligence (AI) enabled cyberattacks which are quite limited until now, may get more aggressive in the coming years.

The Helsinki-based cybersecurity and privacy firm WithSecure, the Finnish Transport and Communications Agency, and the Finnish National Emergency Supply Agency collaborated on the report, according to an article by Cybernews on Thursday.

Dec 18
2022

Cyberthreats lurk at Messi vs. Mbappé FIFA World Cup final match as 5 billion prepare to watch

More than 15,000 cameras have been placed throughout the eight stadiums and along roads and transportation infrastructure in Doha.

As Lionel Messi faces Kylian Mbappé in Argentina vs France World Cup final match in Qatar, which billions prepare to watch, cybersecurity experts warn that the event may be a hotspot for cyber threats.

“With major sporting events becoming increasingly digitized, the attack surface for threat actors has also increased,” a recent ZeroFox report on World Cup threats stated.

Stephen nadler/ ISI photos/ getty images.

Cyberthreats lurk as five billion people prepare to watch the World Cup final, according to an article by Dark Reading published on Friday.

Dec 16
2022

Space imaging company Maxar agrees to $6.4 billion takeover

“Advent has a proven record of strengthening its portfolio companies and a desire to support Maxar in advancing our long-term strategic objectives,” Maxar CEO Daniel Jablonsky said in the statement. “As a private company, we will have enhanced flexibility and additional resources to build on Maxar’s strong foundation, further scale operations and capture the significant opportunities in a rapidly expanding market.”

With some $28 billion invested across the defense, security and cybersecurity sectors in the last three years, Boston-based Advent’s portfolio companies support many satellite and defense platforms which serve the U.S. government and its allies as well as companies across the globe. The firm said it arranged debt and equity financing commitments to finance the acquisition.

The transaction is expected to close mid-2023, subject to customary closing conditions. Maxar, which has 4,400 employees, will operate under the same brand and maintain its headquarters in Westminster, Colorado, and will remain U.S.-controlled and operated.

Dec 14
2022

A DNA Hack Might One Day Save Us From Future Heart Attacks

It worked on mice—and one day it might work on humans as well.

Dec 11
2022

Elon Musk’s Twitter Purchase Raises Concerns for MENA Region

“The likelihood of a cyber-attacks on Twitter feel very high right now and their ability to be able to counteract that feels very low,” Radcliffe said. “The amount of information that they have on users is considerable and I think that that’s a potential source of concern, particularly in countries in the Middle East and other places where once the information is on the open market and in the public domain it could potentially be harmful to users.”

Partnering with individuals or groups close to authoritarian regimes raises concerns over how Twitter might react should it be pressured by supply information on dissidents or to quell opposition speech. They also raise questions about Musk’s potential conflict of business interests concerning Tesla and Space X’s availability in certain markets.

Such questions have already been brought up by at least one member of the US Congress. But experts say they’re much more concerned about data security should Twitter go under.

Dec 8
2022

Automated dark web markets sell corporate email accounts for $2

Cybercrime marketplaces are increasingly selling stolen corporate email addresses for as low as $2 to fill a growing demand by hackers who use them for business email compromise and phishing attacks or initial access to networks.

Analysts at Israeli cyber-intelligence firm KELA have closely followed this trend, reporting at least 225,000 email accounts for sale on underground markets.

The largest webmail shops are Xleet and Lufix, claiming to offer access to over 100k breached corporate email accounts, with prices ranging between $2 and $30, if not more, for highly-desirable organizations.

Dec 8
2022

Bad news! The platform certificates of many phone manufactures have been hacked. These are used to sign trusted apps on Android phones. Now these certificates are being used to certify malicious Android applications

Data security — information security newspaper | hacking news.

Dec 7
2022

Your Windows PC may be hit with yet another bug, causing some apps to stop responding

Microsoft’s Windows Client and Server builds are not hit with a nasty bug, causing some apps to stop responding. The software giant has recently confirmed the issue and promised to bring a fix in an upcoming software update. Microsoft also has a hack to identify if users are currently using any affected apps.

Dec 6
2022

Darknet markets generate millions in revenue selling stolen personal data, supply chain study finds

It is common to hear news reports about large data breaches, but what happens once your personal data is stolen? Our research shows that, like most legal commodities, stolen data products flow through a supply chain consisting of producers, wholesalers and consumers. But this supply chain involves the interconnection of multiple criminal organizations operating in illicit underground marketplaces.

The stolen data supply chain begins with producers—hackers who exploit vulnerable systems and steal sensitive information such as credit card numbers, bank account information and Social Security numbers. Next, the stolen data is advertised by wholesalers and distributors who sell the data. Finally, the data is purchased by consumers who use it to commit various forms of fraud, including fraudulent credit card transactions, identity theft and phishing attacks.

This trafficking of stolen data between producers, wholesalers and consumers is enabled by darknet markets, which are websites that resemble ordinary e-commerce websites but are accessible only using special browsers or authorization codes.

Dec 3
2022

Google shuts down Duplex on the Web, its attempt to bring AI smarts to retail sites and more

Google is shutting down Duplex on the Web, its AI-powered set of services that navigated sites to simplify the process of ordering food, purchasing movie tickets and more. According to a note on a Google support page, Google on the Web and any automation features enabled by it will no longer be supported as of this month.

“As we continue to improve the Duplex experience, we’re responding to the feedback we’ve heard from users and developers about how to make it even better,” a Google spokesperson told TechCrunch via email, adding that Duplex on the Web partners have been notified to help them prepare for the shutdown. “By the end of this year, we’ll turn down Duplex on the Web and fully focus on making AI advancements to the Duplex voice technology that helps people most every day.”

Google introduced Duplex on the Web, an outgrowth of its call-automating Duplex technology, during its 2019 Google I/O developer conference. To start, it was focused on a couple of narrow use cases, including opening a movie theater chain’s website to fill out all of the necessary information on a user’s behalf — pausing to prompt for choices like seats. But Duplex on the Web later expanded to passwords, helping users automatically change passwords exposed in a data breach, as well as assist with checkout for e-commerce retailers, flight check-in for airline sites and automatic discount finding.