dovlerner - Network

In a case study looking into underground exposure of patient data, we discovered access to 1,241 patient glucose monitors accounts for sale...

In a case study looking into underground exposure of patient data, we discovered access to 1,241 patient glucose monitors accounts for sale on underground log and bot markets over the last year.

To stress, this does not show that these accounts or their underlying software were “hacked,” nor does it reveal any vulnerabilities in the devices or account software. Rather, it highlights the complex attack surface of PHI. #HIPAA #PHI #threatintel

https://cybersixgill.com/news/articles/underground-markets-are-enabling-attackers-to-access-confidential-patient-data

#Ukrainian civilians learning about where to find humanitarian assistance and consuming vital updates about the #war and fighting?...

#Ukrainian civilians learning about where to find humanitarian assistance and consuming vital updates about the #war and fighting? #Telegram.

#Russian #soldiers seeking info about border crossings so they can flee mobilization? Telegram.

Nationalistic #hacking groups on both sides rallying supporters and sharing target lists and successes? Telegram.

As we are about to mark one year since Russia invaded Ukraine, it's vital to understand how central this app has been for people on both sides of the conflict.

https://news.cybersixgill.com/telegram-russia-ukraine-cyberwar/

#cyberwar #cybercrime #deepweb #threatintelligence

A lot of people are worried that #artificialintelligence such as #chatgpt will take their jobs. Should #hackers also fear being replaced by...

A lot of people are worried that #artificialintelligence such as #chatgpt will take their jobs. Should #hackers also fear being replaced by a machine? And should the rest of us be concerned about #autonomous #AI launching devastating #cyberattacks?

Putting aside the hype, if we really understand AI's capabilities and limitations, we can analyze the risks. For several reasons, I don't think that AI can carry out fully autonomous attacks. It will not give a script kiddie #APT-level capabilities. Instead, those with the greatest understanding of systems, processes, and networks will be able to direct and wield AI to the greatest effect.

Specifically, threat actors can use AI to produce better reconnaissance, more convincing social engineering attempts, and tailored #malware, enabling attacks to be better targeted and more effective. And if AI can successfully discover #vulnerabilities better than a human researcher, we might experience a torrent of critical #zerodays, destabilizing systems worldwide.

We must follow technological developments and understand to what extent AI becomes a part of the threat actor toolbox of tactics, techniques, and procedures. We must continuously assess the risks and prepare our defenses accordingly.

https://news.cybersixgill.com/artificial-intelligence-creating-new-hacking-tools/

#cybersecurity #cybercrime

What caused the #FAA outage? Wrong answers only.

What caused the #FAA outage? Wrong answers only.

One of the most common and effective #cyberattacks is #phishing. And my hunch is that many attacks fail only because the victim is alerted...

One of the most common and effective #cyberattacks is #phishing. And my hunch is that many attacks fail only because the victim is alerted by basic spelling and grammar mistakes. With #chatgpt, attackers won't have that issue anymore.

I really hope that they ran extensive testing and bugfixing on #2023 before pushing it to production. #happynewyear!!!

I really hope that they ran extensive testing and bugfixing on #2023 before pushing it to production. #happynewyear!!!

As President #Zelensky's visit with President #Biden concludes, and the issue of how the #US can strengthen #Ukraine is once more in the...

As President #Zelensky's visit with President #Biden concludes, and the issue of how the #US can strengthen #Ukraine is once more in the public's focus, I hope that the West can examine how to tighten the existing #sanctions on #Russia in order to starve #Putin's regime of the materials that it needs to fight.

Several months ago, I wrote about how #Russians are circumventing the sanctions via the dark web. This needs to be addressed.

https://news.cybersixgill.com/breaking-the-boycott/

For the full report:...

For the full report: https://news.cybersixgill.com/no-account-ability-a-spike-in-sale-of-aged-e-commerce-accounts-threatens-holiday-shopping-2/

As people rush to finish #holidayshopping, they ought to be aware that a good history of transactions and feedback does not confirm that an...

As people rush to finish #holidayshopping, they ought to be aware that a good history of transactions and feedback does not confirm that an #ecommerce seller account is legit.

There is a large #underground market on the deep and #darkweb for "aged accounts"--opened and cultivated by one actor, and then sold to another for use in #scamming and #fraud. We discovered that this activity is on the rise: there has been a nearly 240% increase in the monthly average of underground posts mentioning aged #Amazon accounts.

#cybercrime #cybersecurity #hanukkah #christmas #holidayseason

Threat actors use "aged" #ecommerce accounts to enable fraudulent buying and selling while evading #fraud detection.Our analysis...

Threat actors use "aged" #ecommerce accounts to enable fraudulent buying and selling while evading #fraud detection.

Our analysis discovered that transactions of aged accounts on the underground are trending upwards: there has been a nearly 240% increase in the monthly average of underground posts mentioning aged Amazon accounts.

#threatintelligence #cybercrime #darkweb

https://news.cybersixgill.com/no-account-ability-a-spike-in-sale-of-aged-e-commerce-accounts-threatens-holiday-shopping-2/