Phishers Target Aviation Execs to Scam Customers
KrebsOnSecurity recently heard from a reader whose boss's email account got phished and was used to trick one of the company's customers into sending a large payment to scammers. An investigation into the attacker's infrastructure points to a long-running Nigerian cybercrime ring that is actively targeting established companies in the transportation and aviation industries. READ MORE...
US sanctions North Korean firm, nationals behind IT worker schemes
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) has sanctioned three North Korean nationals and a company for supporting fraudulent IT worker schemes that generated illicit revenue for the Democratic People's Republic of Korea (DPRK) government. The sanctioned company is named Korea Sobaeksu Trading Company, and the three North Korean individuals are Kim Se Un, Jo Kyong Hun, and Myong Chol Min. READ MORE...
Rogue CAPTCHAs: Look out for phony verification pages spreading malware
Bots have got a lot to answer for. They now make up over half of all internet traffic, and while some, such as Google's web crawlers and fetchers, have legitimate purposes, nearly two-fifths are considered malicious. Their power can be harnessed for everything from posting inflammatory social media posts to launching distributed denial-of-service attacks and hijacking online accounts using, for example, previously breached passwords. READ MORE...
Some VMware perpetual license owners are unable to download security patches
Some VMware perpetual license holders are currently unable to download security patches, The Register reported today. The virtualization company has only said that these users will receive the patches at "a later date," meaning users are uncertain how long their virtualization environments will be at risk. Some organizations have opted against signing up for a subscription and are running VMware without a support contract. READ MORE...
Sophisticated Koske Linux Malware Developed With AI Aid
Cybercriminals appear to have employed AI to a significant extent in the development of a sophisticated Linux malware named Koske, according to cloud and container security firm Aqua Security. Koske is designed to abuse compromised systems for cryptocurrency mining. It deploys CPU- and GPU-optimized miners - depending on the device's capabilities - to leverage the host's resources to mine for Monero, Ravecoin, Nexa, Tari, Zano and a dozen other cryptocurrencies. READ MORE...
Hacker sneaks infostealer malware into early access Steam game
A threat actor called EncryptHub has compromised a game on Steam to distribute info-stealing malware to unsuspecting users downloading the title. A few days ago, the hacker (also tracked as Larva-208), injected malicious binaries into the Chemia game files hosted on Steam. Chemia is a survival crafting game from developer 'Aether Forge Studios,' which is currently offered as early access on Steam but has no public release date. READ MORE...
Two major AI coding tools wiped out user data after making cascading mistakes
New types of AI coding assistants promise to let anyone build software by typing commands in plain English. But when these tools generate incorrect internal representations of what's happening on your computer, the results can be catastrophic. Two recent incidents involving AI coding assistants put a spotlight on risks in the emerging field of "vibe coding"-using natural language to generate and execute code through AI models without paying close attention to how the code works under the hood. READ MORE...
Laptop farmer behind $17M North Korean IT worker scam locked up for 8.5 years
An Arizona woman who ran a laptop farm from her home - helping North Korean IT operatives pose as US-based remote workers - has been sentenced to eight and a half years behind bars for her role in a $17 million fraud that hit more than 300 American companies. After her arrest in May 2024, 50-year-old Christina Marie Chapman pleaded guilty in February to conspiracy to commit wire fraud, aggravated identity theft, and conspiracy to launder monetary instruments. READ MORE...
No Patch for Flaw Exposing Hundreds of LG Cameras to Remote Hacking
Hundreds of LG security cameras are vulnerable to remote hacking due to a recently discovered flaw and they will not receive a patch. The cybersecurity agency CISA revealed on Thursday that LG Innotek LNV5110R cameras are affected by an authentication bypass vulnerability that can allow an attacker to gain administrative access to the device. LG Innotek has been notified, but said the vulnerability cannot be patched as the product has reached end of life. READ MORE...
- ...in 1837, the first commercial use of an electric telegraph is demonstrated in London.
- ...in 1954, Chicago Bears running back and nine-time Pro Bowl selectee Walter Payton is born in Columbia, MS.
- ...in 1965, Bob Dylan "goes electric" with amplified instruments at the Newport Folk Festival, sparking controversy in the folk movement.
- ...in 1976, the Viking 1 space probe takes a photograph of a natural Martian surface feature, popularly known as "The Face on Mars."
