2024

New Backdoor Targeting European Officials Linked to Indian Diplomatic Events 2024-02-29 at 10:32 By A previously undocumented threat actor dubbed SPIKEDWINE has been observed targeting officials in European countries with Indian diplomatic missions using a new backdoor called WINELOADER. The adversary, according to a report from Zscaler ThreatLabz, used a PDF file in emails that purported to come from […]

Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems 2024-02-29 at 10:32 By The notorious North Korean state-backed hacking group Lazarus uploaded four packages to the Python Package Index (PyPI) repository with the goal of infecting developer systems with malware. The packages, now taken down, are pycryptoenv, pycryptoconf, quasarlib, and swapmempool. They have been collectively downloaded 3,269 times,

Uncle Sam explores satellites that can create fuel out of thin air 2024-02-29 at 09:48 By Katyanna Quach Very low Earth orbit birds could sip the outer atmosphere on their way up Electric propulsion systems that generate power from the scant air in the outer edges of the atmosphere could power satellites in very low

Nutanix doesn’t expect a rush of VMware refugees – maybe for years 2024-02-29 at 09:03 By Simon Sharwood Beats guidance as renewals grow and waits for Broadcom and Cisco to bring more bucks Nutanix doesn’t expect a rush of VMware users to adopt its platform, because many signed up for long-term deals before Broadcom acquired

Alibaba Cloud cuts prices – hard – for multi-year commitments in mainland China 2024-02-29 at 08:31 By Simon Sharwood This might solve its twin problems of low growth and short-term customers Alibaba Cloud has made significant price cuts for those willing to use its datacenters in mainland China and commit to multi-year deals.… This article

Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware 2024-02-29 at 08:31 By At least two different suspected China-linked cyber espionage clusters, tracked as UNC5325 and UNC3886, have been attributed to the exploitation of security flaws in Ivanti Connect Secure VPN appliances. UNC5325 abused CVE-2024-21893 to deliver a wide range of new malware called LITTLELAMB.WOOLTEA, PITSTOP, PITDOG, PITJET, and

Baidu admits it may never get leading-edge GPUs again 2024-02-29 at 07:35 By Laura Dobberstein Execs swear Chinese cloud will beat local rivals with a superior software stack that makes AI sing Chinese web giant Baidu has told investors its long-term planning assumes it won’t be able to access leading-edge GPUs, but that it can

President Biden Blocks Mass Transfer of Personal Data to High-Risk Nations 2024-02-29 at 07:17 By U.S. President Joe Biden has issued an Executive Order that prohibits the mass transfer of citizens’ personal data to countries of concern. The Executive Order also “provides safeguards around other activities that can give those countries access to Americans’ sensitive data,” the

Chinese PC-maker Acemagic customized its own machines to get infected with malware 2024-02-29 at 07:04 By Simon Sharwood Tried to speed boot times, maybe by messing with ‘Windows source code’, ended up building a viral on-ramp Chinese PC maker Acemagic has admitted some of its products shipped with pre-installed malware.… This article is an excerpt

Toyota admits its engines are overrated – by its own power testing software 2024-02-29 at 05:49 By Laura Dobberstein Japan’s government slapped it for using the wrong code to produce too-powerful results Toyota apologized on Wednesday for an incident involving the fraudulent certification of its diesel engines that resulted in a corrective order from Japan’s

Australian spy chief fears sabotage of critical infrastructure 2024-02-29 at 04:02 By Simon Sharwood And accuses a former Australian politician of having ‘sold out their country’ The director general of security at Australia’s Security Intelligence Organisation (ASIO) has delivered his annual threat assessment, revealing ongoing attempts by adversaries to map digital infrastructure with a view

ALPHV/BlackCat claims responsibility for Change Healthcare attack 2024-02-29 at 02:48 By Jessica Lyons Brags it lifted 6TB of data, but let’s remember these people are criminals and not worthy of much trust The ALPHV/BlackCat cybercrime gang has taken credit – if that’s the word – for a ransomware infection at Change Healthcare that has disrupted

BEAST AI needs just a minute of GPU time to make an LLM fly off the rails 2024-02-29 at 01:48 By Thomas Claburn Talk about gone in 60 seconds Computer scientists at the University of Maryland have developed an efficient way to craft prompts that elicit harmful responses from large language models (LLMs).… This article