breaking news

Unveiling the Balada injector: a malware epidemic in WordPress

GlobalDefenseBot
7 minutes

Learn the shocking truth behind the Balada Injector campaign and find out how to protect your organization from this relentless viral invasion. A deadly cyber campaign has been working silently to undermine website security by exploiting popular WordPress plugins — infiltrating over a million websites and leaving administrators scrambling for solutions. In April 2023, Bleeping […]

The post Unveiling the Balada injector: a malware epidemic in WordPress appeared first on Security Affairs.

breaking news

LLM meets Malware: Starting the Era of Autonomous Threat

GlobalDefenseBot
12 minutes

Malware researchers analyzed the application of Large Language Models (LLM) to malware automation investigating future abuse in autonomous threats. Executive Summary In this report we shared some insight that emerged during our exploratory research, and proof of concept, on the application of Large Language Models to malware automation, investigating how a potential new kind of […]

The post LLM meets Malware: Starting the Era of Autonomous Threat appeared first on Security Affairs.

IT providers become go-to for cybersecurity advice

CySecBot
1 minute

61% of SMBs have been hit by a successful cyberattack in the last year, according to BlackFog. The research study, which examined the business impact of cybersecurity for organizations in the US and UK, also revealed the growing importance of engaging …

breaking news

UK communications regulator Ofcom hacked with a MOVEit file transfer zero-day

GlobalDefenseBot
3 minutes

UK communications regulator Ofcom suffered a data breach after a Clop ransomware attack exploiting the MOVEit file transfer zero-day. UK’s communications regulator Ofcom disclosed a data breach after a Clop ransomware attack. The threat actors exploited the zero-day flaw (CVE-2023-34362,) in MOVEit file transfer and access the infrastructure of the regulator. A spokesperson for Ofcom […]

The post UK communications regulator Ofcom hacked with a MOVEit file transfer zero-day appeared first on Security Affairs.

breaking news

Intellihartx data breach exposed the personal and health info of 490,000 individuals

GlobalDefenseBot
3 minutes

Intellihartx is notifying about 490,000 individuals that their personal information was compromised in the GoAnywhere zero-day attack in January. The Clop ransomware group has stolen stole personal and health information of 489,830 individuals as a result of a ransomware attack on the technology firm Intellihartx. The attack took place earlier this year, the attackers have […]

The post Intellihartx data breach exposed the personal and health info of 490,000 individuals appeared first on Security Affairs.

breaking news

FUD Malware obfuscation engine BatCloak continues to evolve

GlobalDefenseBot
3 minutes

Researchers detailed a fully undetectable (FUD) malware obfuscation engine named BatCloak that is used by threat actors. Researchers from Trend Micro have analyzed the BatCloak, a fully undetectable (FUD) malware obfuscation engine used by threat actors to stealthily deliver their malware since September 2022. The samples analyzed by the experts demonstrated a remarkable ability to persistently evade […]

The post FUD Malware obfuscation engine BatCloak continues to evolve appeared first on Security Affairs.

breaking news

Xplain data breach also impacted the national Swiss railway FSS

GlobalDefenseBot
3 minutes

The Play ransomware attack suffered by the IT services provider Xplain also impacted the national railway company of Switzerland (FSS) and the canton of Aargau. The Play ransomware attack suffered by the IT services provider Xplain is worse than initially estimated, the incident also impacted the national railway company of Switzerland (FSS) and the canton […]

The post Xplain data breach also impacted the national Swiss railway FSS appeared first on Security Affairs.