Agregátor RSS

V minulém dílu našeho seriálu jsme se věnovali programu Apollo. Už je ale čas se podívat jinam, totiž na nejdůležitější fyzikální objevy, za nimiž stály kosmické observatoře.

Last May, law enforcement authorities around the world scored a key win when they hobbled the infrastructure of Lumma, an infostealer that infected nearly 395,000 Windows computers over just a two-month span leading up to the international operation. Researchers said Wednesday that Lumma is once again “back at scale” in hard-to-detect attacks that pilfer credentials and sensitive files.

Lumma, also known as Lumma Stealer, first appeared in Russian-speaking cybercrime forums in 2022. Its cloud-based malware-as-a-service model provided a sprawling infrastructure of domains for hosting lure sites offering free cracked software, games, and pirated movies, as well as command-and-control channels and everything else a threat actor needed to run their infostealing enterprise. Within a year, Lumma was selling for as much as $2,500 for premium versions. By the spring of 2024, the FBI counted more than 21,000 listings on crime forums. Last year, Microsoft said Lumma had become the “go-to tool” for multiple crime groups, including Scattered Spider, one of the most prolific groups.

Takedowns are hard

The FBI and an international coalition of its counterparts took action early last year. In May, they said they seized 2,300 domains, command-and-control infrastructure, and crime marketplaces that had enabled the infostealer to thrive. Recently, however, the malware has made a comeback, allowing it to infect a significant number of machines again.

Read full article

Comments

The AgreeTo add-in for Outlook has been hijacked and turned into a phishing kit that stole more than 4,000 Microsoft account credentials. [...]

Add-ons with 37M installs leak visited URLs to 30+ recipients, researcher says

They know where you've been and they're going to share it. A security researcher has identified 287 Chrome extensions that allegedly exfiltrate browsing history data for an estimated 37.4 million installations.…

On Wednesday, former OpenAI researcher Zoë Hitzig published a guest essay in The New York Times announcing that she resigned from the company on Monday, the same day OpenAI began testing advertisements inside ChatGPT. Hitzig, an economist and published poet who holds a junior fellowship at the Harvard Society of Fellows, spent two years at OpenAI helping shape how its AI models were built and priced. She wrote that OpenAI's advertising strategy risks repeating the same mistakes that Facebook made a decade ago.

"I once believed I could help the people building A.I. get ahead of the problems it would create," Hitzig wrote. "This week confirmed my slow realization that OpenAI seems to have stopped asking the questions I'd joined to help answer."

Hitzig did not call advertising itself immoral. Instead, she argued that the nature of the data at stake makes ChatGPT ads especially risky. Users have shared medical fears, relationship problems, and religious beliefs with the chatbot, she wrote, often "because people believed they were talking to something that had no ulterior agenda." She called this accumulated record of personal disclosures "an archive of human candor that has no precedent."

Read full article

Comments

A member of the Crazy ransomware gang is abusing legitimate employee monitoring software and the SimpleHelp remote support tool to maintain persistence in corporate networks, evade detection, and prepare for ransomware deployment. [...]

The Netherlands Police have arrested a a 21-year-old man from Dordrecht, suspected of selling access to the JokerOTP phishing automation tool that can intercept one-time passwords (OTP) for hijacking accounts. [...]

The more you share online, the more you open yourself to social engineering

If you've seen the viral AI work pic trend where people are asking ChatGPT to "create a caricature of me and my job based on everything you know about me" and sharing it to social, you might think it's harmless. You'd be wrong.…

Alza vydala svou dosud nejvýkonnější nabíječku. • Celkově nabídne 240 W, ale do jednoho konektoru pustí maximálně 140 W. • Na těle má čtyři USB-C a odpojitelný kabel do zásuvky.

Cybersecurity researchers have discovered what they said is the first known malicious Microsoft Outlook add-in detected in the wild. In this unusual supply chain attack detailed by Koi Security, an unknown attacker claimed the domain associated with a now-abandoned legitimate add-in to serve a fake Microsoft login page, stealing over 4,000 credentials in the process. The activity has been

Cybersecurity researchers have discovered what they said is the first known malicious Microsoft Outlook add-in detected in the wild. In this unusual supply chain attack detailed by Koi Security, an unknown attacker claimed the domain associated with a now-abandoned legitimate add-in to serve a fake Microsoft login page, stealing over 4,000 credentials in the process. The activity has been Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

As developers begin using Claude and Codex to help create Mac, iPhone, and iPad apps in Xcode, spare a moment to consider a recent JumpCloud survey that shows most businesses aren’t really ready for AI — though many think they might be.

Among the highlights from the survey:

• 40% of IT leaders self-assess as mature in their AI practices, yet only 22% meet the rigorous objective standards for leading AI readiness.

• 90% of leaders see productivity gains from AI, but 74% remain concerned about security risks, specifically around unauthorized data access and AI-generated phishing.

• 61% of organizations report the use of unsanctioned AI tools, creating significant visibility and governance gaps.

• 85% of IT leaders agree that secure identity and access management (IAM) is critical for scaling AI safely. (Note that JumpCloud calls itself an AI-powered IT management platform.)

JumpCloud argues that enterprises must deploy IT processes to help protect the identity layer as AI impacts their business, “consolidating identity and access controls for both humans and bots to turn AI from a potential liability into a sustainable engine for growth.”

To support that transition, JumpCloud this week introduced a new investment arm to invest in companies building solutions around AI, security, identity and IT productivity. To an extent, this mirrors competitors in the burgeoning Apple-related IT space (Jamf Ventures, for example) even as it highlights the looming impact AI will have on this side of the market.

One of the first JumpCloud investments, Tofu, uses AI as part of its package of protections against identity fraud during the hiring and onboarding process, an emerging problem for some businesses. You could see Tofu’s tools as indicative of the speed at which AI is evolving. 

Between the thought and the action lies the shadow

People don’t seem prepared for the consequences of the rapid evolution even though business leaders think they are. This gap between perceived preparedness and actual readiness comes after over a decade of rapid digital transformation. That transformation saw the iPhone-driven evolution of mobile business, the collapse of the former hegemonic Microsoft dominance of the enterprise, and an algorithmic assault on some of the principles that underpinned international trade. 

The impact has been felt by every business, and entire business sectors have already been replaced by digitized alternatives. Our century so far has seen an avalanche of change, (remember “1,000 songs in your pocket”?) and enterprise leaders are struggling to keep pace, the JumpCloud survey shows.

Thought leaders have been discussing the need to adopt a new business mindset in which enterprises accept they live in an environment of constant change. These people say creative thinking and a willingness to embrace constant change will be the hallmarks of business success, but when technology moves faster than business leaders, the business environment itself becomes inevitably unstable. 

When it comes to AI deployment, that means confidential data leaks, legal battles as regulators challenge those leaks, and the need to invest in managing digital transformation. 

Faster than progress

AI development is accelerating. New models like GPT-5.3 Codex or Claude Opus 4.6 are insanely powerful and have now evolved something like autonomous discretion. That’s why they can create and iterate application code, which Xcode developers will be exploring now that tools have been made available to them.

It won’t end with code. You can see the direction of travel for yourself at METR, an organization that tracks how long it takes AI models to complete long tasks. 

Anthropic CEO Dario Amodei tells it like it is when he says AI models “substantially smarter than almost all humans at almost all tasks” could arrive as soon as this year. He also says it might only be a couple of years until AI autonomously builds its own AI successors. 

In the background, the leader of Anthropic’s Safeguards Research Team, Mrinank Sharma, just quit, warning the “world is in peril” from a series of interconnected crises, including AI. Think about that, think about the extent to which you and your business truly meet the standards of AI preparedness, and then consider the challenge it poses to IT decision makers working to keep their heads afloat amid this tsunami of change. 

The gap between perceived and actual readiness is not just a statistic, it is a call to action for every leader. In a world where AI evolves so very quickly, true leadership requires us to prepare for the unknown. The experts say those who manage to stay afloat will be the ones who experiment today, and adapt tomorrow. While you do that, note that AI will be adapting at the very same time and probably faster, and is already in use, sanctioned, or unsanctioned, across your company.

Are you ready? Probably not yet.

Yes, the image to this story was created using AI.

You can follow me on social media! Join me on BlueSky,  LinkedIn, and Mastodon.

Cyber resilience means anticipating threats, detecting them early, and recovering fast when incidents occur. Wazuh shows how its open source SIEM and XDR unify visibility, detection, and automated response to strengthen proactive defense. [...]

Smartphony jsou dnes nudné placky a podobají se jeden druhému • Platilo to i v minulosti, ale s několika výraznými výjimkami • Toto jsou mobilní rarity, které dnes už nikde neuvidíte

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware. [...]

Malá nabíječka Ugreen nabízí tři konektory a výkon 65 W. • Vypadá jako robot, má také displej zobrazující emoce. • Podporuje všechny klíčové rychlonabíjecí technologie.

Curious port filtering and traffic patterns suggest advisories weren’t the earliest warning signals sent

Telcos likely received advance warning about January's critical Telnet vulnerability before its public disclosure, according to threat intelligence biz GreyNoise.…