Tag

State Sponsored Hackers

All articles tagged with #state sponsored hackers

cybersecurity1 year ago•4 min saved

"Exploited Zero-Day Vulnerability in Palo Alto Networks Firewalls Sparks Urgent Fixes"

Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls since March 26, using compromised devices to breach internal networks, steal data, and credentials. The vulnerability, tracked as CVE-2024-3400, allows unauthenticated remote code execution in PAN-OS firewall software. Volexity, which discovered the zero-day flaw, believes it is highly likely that state-sponsored threat actors are conducting the attacks. The hackers have installed a custom backdoor named 'Upstyle' to pivot to the target's internal network and steal data, and have also deployed additional payloads to start reverse shells and exfiltrate data. Network devices have become a popular target for threat actors to gain initial access to a network and steal data.

via BleepingComputer|

#backdoor #cybersecurity #network-security

cybersecurity1 year ago•2 min saved

"OpenAI's Battle Against State-Sponsored Hackers Using ChatGPT"

OpenAI has removed accounts used by state-sponsored threat groups from Iran, North Korea, China, and Russia, that were misusing its ChatGPT AI for malicious purposes. The threat actors used the large language models to enhance their strategic and operational capabilities, including reconnaissance, social engineering, and generic information gathering. OpenAI will continue to monitor and disrupt state-backed hackers using specialized monitoring tech and information from industry partners, aiming to evolve their safeguards based on lessons learned from these actors' abuse.

via BleepingComputer|

#chatgpt #cybersecurity #openai

cybersecurity2 years ago•0 min saved

Chinese state-sponsored hackers target US critical infrastructure, warns Microsoft.

Microsoft has revealed that state-sponsored hackers from China, known as Volt Typhoon, have attacked "critical" infrastructure in the US across a range of industries, including communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The attack could disrupt critical communications infrastructure between the US and Asia region during future crises. Microsoft has directly notified targeted or compromised customers and issued best practices to better secure their operations.

via Seeking Alpha|

#china #critical-infrastructure #cybersecurity