North Korean APT43 Group Uses Cybercrime to Fund Espionage Operations

North Korean APT43 Group Uses Cybercrime to Fund Espionage Operations,

A new North Korean nation-state cyber operator has been attributed to a series of campaigns orchestrated to gather strategic intelligence that aligns with Pyongyang’s geopolitical interests since 2018.
Google-owned Mandiant, which is tracking the activity cluster under the moniker APT43, said the group’s motives are both espionage- and financially-motivated, leveraging techniques like credential

,

A new North Korean nation-state cyber operator has been attributed to a series of campaigns orchestrated to gather strategic intelligence that aligns with Pyongyang’s geopolitical interests since 2018.
Google-owned Mandiant, which is tracking the activity cluster under the moniker APT43, said the group’s motives are both espionage- and financially-motivated, leveraging techniques like credential

, ,
https://thehackernews.com/2023/03/north-korean-apt43-group-uses.html

Microsoft Introduces GPT-4 AI-Powered Security Copilot Tool to Empower Defenders

Microsoft Introduces GPT-4 AI-Powered Security Copilot Tool to Empower Defenders,

Microsoft on Tuesday unveiled Security Copilot in preview, marking its continued push to embed AI-oriented features in an attempt to offer « end-to-end defense at machine speed and scale. »
Powered by OpenAI’s GPT-4 generative AI and its own security-specific model, it’s billed as a security analysis tool that enables cybersecurity analysts to quickly respond to threats, process signals, and

,

Microsoft on Tuesday unveiled Security Copilot in preview, marking its continued push to embed AI-oriented features in an attempt to offer « end-to-end defense at machine speed and scale. »
Powered by OpenAI’s GPT-4 generative AI and its own security-specific model, it’s billed as a security analysis tool that enables cybersecurity analysts to quickly respond to threats, process signals, and

, ,
https://thehackernews.com/2023/03/microsoft-introduces-gpt-4-ai-powered.html

Pakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of Defence

Pakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of Defence

,

An advanced persistent threat (APT) group that has a track record of targeting India and Afghanistan has been linked to a new phishing campaign that delivers Action RAT.
According to Cyble, which attributed the operation to SideCopy, the activity cluster is designed to target the Defence Research and Development Organization (DRDO), the research and development wing of India’s Ministry of

,

An advanced persistent threat (APT) group that has a track record of targeting India and Afghanistan has been linked to a new phishing campaign that delivers Action RAT.
According to Cyble, which attributed the operation to SideCopy, the activity cluster is designed to target the Defence Research and Development Organization (DRDO), the research and development wing of India’s Ministry of

, ,
https://thehackernews.com/2023/03/pakistan-origin-sidecopy-linked-to-new.html

IcedID Malware Shifts Focus from Banking Fraud to Ransomware Delivery

IcedID Malware Shifts Focus from Banking Fraud to Ransomware Delivery,

Multiple threat actors have been observed using two new variants of the IcedID malware in the wild with more limited functionality that removes functionality related to online banking fraud.
IcedID, also known as BokBot, started off as a banking trojan in 2017. It’s also capable of delivering additional malware, including ransomware.
« The well-known IcedID version consists of an initial loader

,

Multiple threat actors have been observed using two new variants of the IcedID malware in the wild with more limited functionality that removes functionality related to online banking fraud.
IcedID, also known as BokBot, started off as a banking trojan in 2017. It’s also capable of delivering additional malware, including ransomware.
« The well-known IcedID version consists of an initial loader

, ,
https://thehackernews.com/2023/03/icedid-malware-shifts-focus-from.html

Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo

Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo,

Malicious actors are constantly adapting their tactics, techniques, and procedures (TTPs) to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following:

Increased use of Artificial Intelligence and Machine Learning: Malicious actors are increasingly leveraging AI and machine learning to

,

Malicious actors are constantly adapting their tactics, techniques, and procedures (TTPs) to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following:

Increased use of Artificial Intelligence and Machine Learning: Malicious actors are increasingly leveraging AI and machine learning to

, ,
https://thehackernews.com/2023/03/breaking-mold-pen-testing-solutions.html

Pire que TikTok, ces VPN populaires peuvent lire vos données privées

Pire que TikTok, ces VPN populaires peuvent lire vos données privées,

VPN

Très populaires, les VPN vous permettent de protéger votre anonymat sur Internet. Aujourd’hui, des experts alertent sur le fait que les données personnelles cachées sont accessibles par les VPN eux-mêmes, ce qui pose de sérieuses questions sur l’utilisation de ces données privées.

,

VPN

Très populaires, les VPN vous permettent de protéger votre anonymat sur Internet. Aujourd’hui, des experts alertent sur le fait que les données personnelles cachées sont accessibles par les VPN eux-mêmes, ce qui pose de sérieuses questions sur l’utilisation de ces données privées.

, ,
https://www.01net.com/actualites/pire-que-tiktok-ces-vpn-populaires-peuvent-lire-vos-donnees-privees.html

Stealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in Europe

Stealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in Europe,

A new phishing campaign has set its sights on European entities to distribute Remcos RAT and Formbook via a malware loader dubbed DBatLoader.
« The malware payload is distributed through WordPress websites that have authorized SSL certificates, which is a common tactic used by threat actors to evade detection engines, » Zscaler researchers Meghraj Nandanwar and Satyam Singh said in a report

,

A new phishing campaign has set its sights on European entities to distribute Remcos RAT and Formbook via a malware loader dubbed DBatLoader.
« The malware payload is distributed through WordPress websites that have authorized SSL certificates, which is a common tactic used by threat actors to evade detection engines, » Zscaler researchers Meghraj Nandanwar and Satyam Singh said in a report

, ,
https://thehackernews.com/2023/03/stealthy-dbatloader-malware-loader.html

President Biden Signs Executive Order Restricting Use of Commercial Spyware

President Biden Signs Executive Order Restricting Use of Commercial Spyware,

U.S. President Joe Biden on Monday signed an executive order that restricts the use of commercial spyware by federal government agencies.
The order said the spyware ecosystem « poses significant counterintelligence or security risks to the United States Government or significant risks of improper use by a foreign government or foreign person. »
It also seeks to ensure that the government’s use of

,

U.S. President Joe Biden on Monday signed an executive order that restricts the use of commercial spyware by federal government agencies.
The order said the spyware ecosystem « poses significant counterintelligence or security risks to the United States Government or significant risks of improper use by a foreign government or foreign person. »
It also seeks to ensure that the government’s use of

, ,
https://thehackernews.com/2023/03/president-biden-signs-executive-order.html

Apple Issues Urgent Security Update for Older iOS and iPadOS Models

Apple Issues Urgent Security Update for Older iOS and iPadOS Models,

Apple on Monday backported fixes for an actively exploited security flaw to older iPhone and iPad models.
The issue, tracked as CVE-2023-23529, concerns a type confusion bug in the WebKit browser engine that could lead to arbitrary code execution.
It was originally addressed by the tech giant with improved checks as part of updates released on February 13, 2023. An anonymous researcher has been

,

Apple on Monday backported fixes for an actively exploited security flaw to older iPhone and iPad models.
The issue, tracked as CVE-2023-23529, concerns a type confusion bug in the WebKit browser engine that could lead to arbitrary code execution.
It was originally addressed by the tech giant with improved checks as part of updates released on February 13, 2023. An anonymous researcher has been

, ,
https://thehackernews.com/2023/03/apple-issues-urgent-security-update-for.html

20-Year-Old BreachForums Founder Faces Up to 5 Years in Prison

20-Year-Old BreachForums Founder Faces Up to 5 Years in Prison,

Conor Brian Fitzpatrick, the 20-year-old founder and the administrator of the now-defunct BreachForums has been formally charged in the U.S. with conspiracy to commit access device fraud.
If proven guilty, Fitzpatrick, who went by the online moniker « pompompurin, » faces a maximum penalty of up to five years in prison. He was arrested on March 15, 2023.
« Cybercrime victimizes and steals financial

,

Conor Brian Fitzpatrick, the 20-year-old founder and the administrator of the now-defunct BreachForums has been formally charged in the U.S. with conspiracy to commit access device fraud.
If proven guilty, Fitzpatrick, who went by the online moniker « pompompurin, » faces a maximum penalty of up to five years in prison. He was arrested on March 15, 2023.
« Cybercrime victimizes and steals financial

, ,
https://thehackernews.com/2023/03/20-year-old-breachforums-founder-faces.html