Месяц: Июль 2024
Peloton Takes a Spin Through Court, Thanks to AI Privacy Lawsuit
The case alleges a third-party marketer for the exercise giant improperly used customer chat data to train its AI models.
Attackers Have Been Leveraging Microsoft Zero-Day for 18 Months
Likely two separate threat actors are using the just-patched CVE-2024-38112 in targeted, concurrent infostealer campaigns.
Feds Uncover Sprawling, GenAI-Enabled Russian Troll Farm
The bot farm was created using AI-enhanced software that was able to create a host of different false personas to spread disinformation in convincing and unsettling ways.
Poco RAT Burrows Deep Into Mining Sector
The novel malware targets Spanish-speaking users via malicious Google Drive links, and taps a popular C++ library to evade detection.
Privacy & Security Concerns With AI Meeting Tools
Businesses need to find a balance between harnessing the benefits of AI assistants and safeguarding sensitive information — maintaining trust with employees and clients.
What’s Bugging the NSA? A Vuln in Its ‘SkillTree’ Training Platform
Even the NSA leaves bugs in its software. In this case, it’s the kind of cross-site issue that regularly slips past developers.
Google Targets Passkey Support to High-Risk Execs, Civil Society
The tech giant has rolled out passkey support for account authentication within its Advanced Protection Program to complement existing compatibility with FIDO2 hardware keys.
Houthi-Aligned APT Targets Mideast Militaries With ‘GuardZoo’ Spyware
Simple malware and simple TTPs play against a backdrop of complex geopolitical conflict in the Arab world.
5 Tips to Minimize the Costly Effects of Data Exfiltration
The more sensitive data an organization collects, the more at risk it is to a cyberattack. Here’s how to limit the damage.