ChatGPT’s Dark Side: An Endless Supply of Polymorphic Malware

CySecBot
4 minutes

CyberArk researchers are warning that OpenAI’s popular new AI tool ChatGPT can be used to create polymorphic malware. “[ChatGPT]’s impressive features offer fast and intuitive code examples, which are incredibly beneficial for anyone in the software business,” CyberArk researchers Eran Shimony and Omer Tsarfati wrote this week in a blog post that was itself apparently […]

The post ChatGPT’s Dark Side: An Endless Supply of Polymorphic Malware appeared first on eSecurityPlanet.

LATEST CYBERTHREATS AND ADVISORIES – JANUARY 20, 2023

CySecBot
4 minutes

TikTok is fined for a privacy violation, major corporations suffer breaches and Vice Society attacks another school. Here are the latest threats and advisories for the week of January 20, 2023. Threat Advisories and Alerts U.K. School Survey Reveals Surprising Findings A new survey by London Grid for Learning (LGfL) and the National Cyber Security Centre (NCSC) revealed that the uptick in cyberattacks on the U.K. school system may not be as bad as first thought. The survey, of more than 800 schools, revealed that 78% of them had suffered at least one cybersecurity incident. Other interesting findings showed that…

Subparse : Modular Malware Analysis Artifact Collection And Correlation Framework

CySecBot
6 minutes

Subparse, is a modular framework developed by Josh Strochein, Aaron Baker, and Odin Bernstein. The framework is designed to parse and index malware files and present the information found during the parsing in a searchable web-viewer. The framework is modular, making use of a core parsing engine, parsing modules, and a variety of enrichers that […]

OpenAI’s ChatGPT Can Create Polymorphic Malware

CySecBot
1 minute

By Waqas
The researchers managed to create the Polymorphic malware by bypassing the content filters in ChatGPT by using an authoritative tone.
This is a post from HackRead.com Read the original post: OpenAI’s ChatGPT Can Create Polymorphic Malware

breaking news

Chinese hackers used recently patched FortiOS SSL-VPN flaw as a zero-day in October

GlobalDefenseBot
3 minutes

An alleged Chinese threat actor was observed exploiting the recently patched CVE-2022-42475 vulnerability in FortiOS SSL-VPN. Researchers from Mandiant reported that suspected Chinese threat actors exploited the recently patched CVE-2022-42475 vulnerability in FortiOS SSL-VPN as a zero-day. According to the security firm, the vulnerability was exploited in attacks against a series of targets, including a […]

The post Chinese hackers used recently patched FortiOS SSL-VPN flaw as a zero-day in October appeared first on Security Affairs.

Chainguard Trains Spotlight on SBOM Quality Problem

CySecBot
1 minute

Software engineers tracking the quality of software bill of materials have stumbled on a startling discovery: Barely 1% of all SBOMs being generated today meets the “minimum elements” defined by the U.S. government.
read more

Malicious PyPI Packages Drop Malware in New Supply Chain Attack

CySecBot
1 minute

By Deeba Ahmed
These packages were uploaded between the 7th and 12th of January 2023 with the names “colorslib,” “httpslib,” and “libhttps.”
This is a post from HackRead.com Read the original post: Malicious PyPI Packages Drop Malware in New Supply Cha…

Threat attackers can own your data in just two days

CySecBot
1 minute

This report shows cybercriminals need only a couple days to access your full corporate network and exfiltrate its data. Read on to learn more.
The post Threat attackers can own your data in just two days appeared first on TechRepublic.

Avast

Avast Releases Free Decryptor for BianLian Ransomware

CySecBot
1 minute

By Deeba Ahmed
Using this decryptor, BianLian victims can retrieve their encrypted data for free and avoid paying the ransom to the attackers.
This is a post from HackRead.com Read the original post: Avast Releases Free Decryptor for BianLian Ransomware

Threat Actors Spreading NjRAT in New “Earth Bogle” Campaign

CySecBot
1 minute

By Deeba Ahmed
The campaign is active, and currently, threat actors are targeting victims with NjRAT (also known as Bladabindi) in the Middle East and North Africa.
This is a post from HackRead.com Read the original post: Threat Actors Spreading NjRAT …