Microsoft

SesameOp: Novel backdoor uses OpenAI Assistants API for command and control

Microsoft Incident Response – Detection and Response Team (DART) researchers uncovered a new backdoor that is notable for its novel use of the OpenAI Assistants Application Programming Interface (API) ...

3,000+ YouTube videos deliver malware disguised as free software

YouTube's Ghost Network spreads information-stealing malware through thousands of fake videos offering cracked software, ...

Hackers use RMM tools to breach freighters and steal cargo shipments

Threat actors are targeting freight brokers and trucking carriers with malicious links and emails to deploy remote monitoring and management tools (RMMs) that enable them to hijack cargo and steal ...

Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks

Microsoft security researchers have discovered a new backdoor malware that uses the OpenAI Assistants API as a covert command-and-control channel.

DOJ accuses US ransomware negotiators of launching their own ransomware attacks

Three people, including two U.S. ransomware negotiators, are accused of working on behalf of the ALPHV/BlackCat ransomware ...
SecurityWeek

Claude AI APIs Can Be Abused for Data Exfiltration

Attackers can use indirect prompt injections to trick Anthropic’s Claude into exfiltrating data the AI model’s users have ...
WeLiveSecurity

Ground zero: 5 things to do after discovering a cyberattack

Once threat actors get inside your network, the clock is ticking. Whether they are after sensitive data to steal and ransom, ...
PCMag

US Traces Ransomware Attacks to 2 People Working for Cybersecurity Firms

Federal investigators allege that the two started their scheme around May 2023 by spreading a ransomware infection to a ...