A new packed variant of the Redline Stealer trojan was observed in the wild, leveraging Lua bytecode to perform malicious behavior. McAfee telemetry data shows this malware strain is very prevalent, covering North America, South America, Europe, and Asia and reaching Australia. Infection Chain   GitHub is being abused to host the malware file at Microsoft’s official account in the vcpkg repository https[:]//github[.]com/microsoft/vcpkg/files/14125503/Cheat.Lab.2.7.2.zip McAfee Web Advisor blocks access to this malicious download Cheat.Lab.2.7.2.zip is a…

Here at CIO.com we are committed to bringing you high-quality human-created insights, and we are excited to use new technologies to do so. Major news outlets are now regularly publicizing their stances on the use of Generative AI, or Gen AI, by journalists. Some, like Associated Press and The Guardian, have outright banned the use of generative AI in the creation of stories and images. Others suggest that generative AI will play a part in…

Threat actors have been observed exploiting unpatched Atlassian servers and deploying a Linux variant of Cerber ransomware, also known as C3RB3R.  The attacks capitalize on CVE-2023-22518, a critical security vulnerability in Atlassian Confluence Data Center and Server, enabling an unauthenticated attacker to reset Confluence and create an administrator account. Armed with this access, threat actors gain control over systems, risking loss of confidentiality, integrity and availability. Financially motivated cybercrime groups leverage the newly created admin…

Security researchers have uncovered new tactics associated with the threat actor TA427, also known as Emerald Sleet, APT43, THALLIUM or Kimsuky.  This group, believed to be aligned with North Korea’s Reconnaissance General Bureau, has been observed engaging in email phishing campaigns targeting experts for insights into US and South Korean foreign policies. According to an advisory published by Proofpoint on Tuesday, TA427 has directly contacted foreign policy experts since 2023, soliciting their opinions on topics…

The Open Source Security Foundation (OpenSSF), in collaboration with the US government, has launched a new tool to simplify Software Bill of Materials (SBOMs) management for organizations. Protobom, the new open source software tool, will help all organizations read and generate SBOMs and file data, as well as translate this data across standard industry SBOM formats. It is designed to be integrated into applications that link SBOM information with external records of vulnerabilities and severity…

Imagine receiving a call from a loved one, only to discover it’s not them but a convincing replica created by voice cloning technology. This scenario might sound like something out of a sci-fi movie, but it became a chilling reality for a Brooklyn couple featured in a New Yorker article who thought their loved ones were being held for ransom. The perpetrators used voice cloning to extort money from the couple as they feared for…

By Prakash Mana, CEO, Cloudbrink Security will continue to head the list of priorities for CISOs in 2024, but how we secure our enterprises will need rethinking in the face of the workplace revolution. No, this isn’t another article about AI, but about the hybrid workplace. The pandemic didn’t create hybrid working, but it massively accelerated trends that were already in play turning what had been a steady movement into a revolution. The IT firefighting…

Visualization is a key part of the new release, according to Certinia’s briefing. There, the company showed off a series of dashboards that enable users to perform tasks such as synchronize employee schedules in response to customer requests, track whether billable elements of a project have been sitting idle or not, and keep a running comparison of a project’s current revenue compared to earlier estimates. The company’s core offerings are designed to provide tracking, metrics,…