P2PInfect network security, phishing, ChatGPT, AI, identity, hacking, AI, Chat GPT, ChatGPT malware threat ransomware CNA REvil EtterSilent ransomware dark web

New P2P Worm Puts Windows and Linux Redis Servers in its Sights

Jeffrey Burt | July 20, 2023 | Cloud, Cloud-native, Cybersecurity, P2P, redis

A new peer-to-peer (P2P) worm, P2PInfect, is spreading across instances of the Redis open source database software in the cloud ...

Security Boulevard

API Skyhawk Security modeling threat CosmicStrand insider threats Threat Modeling - Secure Coding - Cybersecurity - Security

Why Generative AI is a Threat to API Security

Bill Doerrfeld | July 20, 2023 | API security, Application Security, AppSec, generative AI, web app security

Generative AI can be used to amplify cybercriminals' nefarious deeds against web applications, especially those that rely heavily on APIs ...

Security Boulevard

attack, hackers, black hat attacker celebrity Trickbot Emotet Black Shadow McAfee REvil ransomware Kaseya

Attacker ID’ed After Infecting Own Computer With Malware

Jeffrey Burt | July 19, 2023 | black hat, cyberattacks, Cybersecurity, hacker, Hudson Rock

A threat actor that goes by the name of “La_Citrix” inadvertently infected his own computer. Cyberthreat research firm sent his information on to law enforcement ...

Security Boulevard

An ‘Alarming Escalation’ of Sophistication in DDoS Attacks, Cloudflare Says

Jeffrey Burt | July 19, 2023 | CloudFlare, Cybersecurity, ddos

Distributed DDoS attacks are becoming increasingly sophisticated and complex, making an already-expanding threat landscape even more challenging ...

Security Boulevard

Biden Admin. Adds ‘Mercenary Spyware’ Firms to Ban List

Richi Jennings | July 19, 2023 | android spyware, Biden administration, Commerce Department, Cytrox, Department of Commerce, Entity List, eu, Europe, European Union, European Union (EU), Intellexa, iOS spyware, Malware Spyware, Predator spyware, SB Blogwatch, spyware

European cousins Intellexa and Cytrox essentially banned by Commerce Dept. — Predator/ALIEN not welcome in U.S ...

Security Boulevard

ChatGPT Spyderbat Lacework Zerologon Malware Complacency

ChatGPT Provides Limited Help Identifying Malware

Michael Vizard | July 19, 2023 | Artificial Intelligence, ChatGPT, Endor Labs, Malware, software supply chain

Current LLM-based tech like ChatGPT can accurately classify malware risk in only 5% of cases—and they may never be able to recognize novel approaches used to create malware ...

Security Boulevard

industrial Colonial Pipeline critical infrastructure OT Utilities

Russia Expected to Increase Critical Infrastructure Attacks

Teri Robinson | July 19, 2023 | Critical Infrastructure, cyberattacks, Espionage, Russia, Ukraine

Russia’s war strategy increasingly involves cybersecurity, with the country expected to ramp up attacks on critical infrastructure in Ukraine and countries that are members of NATO, according to Switzerland’s Federal Intelligence Service ...

Security Boulevard

FTC Investigation ChatGPT Surrounding Their Data Sources.

John P. Gormally, SR | July 18, 2023 | Artificial Intelligence, ChatGPT, machine learning, Personal, Privacy

FTC Investigation ChatGPT Surrounding Their Data Sources.2 min read·Just now--Credit: Bruce Willis: Actor: Movie: Die HardThe Washington Post reported the Federal Trade Commission is planning to investigate the data sources used by ...

Stories by John P. Gormally, SR on Medium

Microsoft ransomware AWS Spring4Shell flaws vulnerabilities WhiteSource Python

CISA to Gov’t Agencies: Mitigate a Flaw in Windows and Office

Jeffrey Burt | July 18, 2023 | cisa, Cybersecurity, Microsoft, NATO, RomCom

The U.S. government is giving federal agencies three weeks to mitigate a zero-day Microsoft Windows and Office security flaw exploited by the Russian-linked RomCom threat group ...

Security Boulevard