Europol details ChatGPT's potential for criminal abuse
With the increased public interest in ChatGPT, the Europol Innovation Lab took the matter seriously and conducted a series of workshops involving subject matter experts from various departments of Europol. These workshops aimed to investigate potential ways in which large language models (LLMs) like ChatGPT can be exploited by criminals and how they can be utilized to aid investigators in their day-to-day tasks. READ MORE...
Food giant Dole reveals more about ransomware attack
Fruit and vegetable producer Dole has confirmed attackers behind its February ransomware attack accessed employee data. The company hasn't revealed the number of staff impacted. Customers complained on social media about delays and shortages of Dole products on store shelves for more than a week. The company also temporarily shut down production plants in North America and stopped delivery to stores. READ MORE...
14 Million Records Stolen in Data Breach at Latitude Financial Services
Australian financial services company Latitude Financial Services now says that roughly 14 million records were stolen in a cyberattack earlier this month. The incident was disclosed in mid-March, when the company started notifying roughly 300,000 customers of a data breach impacting their personal information. In an updated notification, the company this week announced that the incident, which has caused service disruptions, was bigger than initially determined. READ MORE...
UK police reveal they are running fake DDoS-for-hire sites to collect details on cybercriminals
There's bad news if you're someone who is keen to launch a Distributed Denial-of-Service (DDoS) attack to boot a website off the internet, but don't have the know-how to do it yourself. Rather than hiring the help of cybercriminals to bombard a site with unwanted traffic or kick rivals out of a video game, you might be actually handing your details straight over to the police. READ MORE...
BEC scammers are after physical goods, the FBI warns
BEC attacks are usually aimed at stealing money or valuable information, but the FBI warns that BEC scammers are increasingly trying to get their hands on physical goods such as construction materials, agricultural supplies, computer technology hardware, and solar energy products. Such schemes are not without a precendent: during the height of the Covid-19 pandemic, scammers went after PPE and other medical equipment. READ MORE...
Apple patches everything, including a zero-day fix for iOS 15 users
Apple's latest update blast is out, including an extensive range of security patches for all devices that Apple officially supports. There are fixes for iOS, iPadOS, tvOS and watchOS, along with patches for all three supported flavours of macOS, and even a special update to the firmware in Apple's super-cool external Studio Display monitor. Apparently, if you're running macOS Ventura and you've hooked your Mac up to a Studio Display, just updating the Ventura operating system itself isn't enough. READ MORE...
Android app from China executed 0-day exploit on millions of devices
Android apps digitally signed by China's third-biggest e-commerce company exploited a zero-day vulnerability that allowed them to surreptitiously take control of millions of end-user devices to steal personal data and install malicious apps, researchers from security firm Lookout have confirmed. The malicious versions of the Pinduoduo app were available in third-party markets, which users in China and elsewhere rely on because the official Google Play market is off-limits or not easy to access. READ MORE...
New IcedID variants shift from bank fraud to malware delivery
New IcedID variants have been found without the usual online banking fraud functionality and instead focus on installing further malware on compromised systems. According to Proofpoint, these new variants have been seen used by three distinct threat actors in seven campaigns since late last year, focusing on further payload delivery, most notably ransomware. READ MORE...
Bogus Chat GPT extension takes over Facebook accounts
If you're particularly intrigued by the current wave of interest in AI, take care. There's some bad things lurking in search engine results waiting to compromise your Facebook account. A rogue Chrome extension deployed in a campaign targeting Facebook users is "hitting thousands a day" according to researchers who made this discovery. The scam is based around Chat GPT-4. This is the latest iteration of what is essentially a supposedly very smart AI chatbot. READ MORE...
- ...in 1928, Polish-American political scientist and former National Security Advisor Zbigniew Brzezinski is born in Warsaw, Poland.
- ...in 1930, Turkey changes the name of its largest city, Constantinople, to Istanbul.
- ...in 1969, former President and five-star general Dwight D. Eisenhower dies of congestive heart failure.
- ...in 1979, a coolant leak at the Three Mile Island nuclear power plant near Harrisburg, PA results in a partial meltdown.
- ...in 1986, singer-songwriter/actress Stefani Germanotta, aka Lady Gaga, is born in New York City.
