Sometimes people surprise me. “Impotent” did. He’s gone by a number of usernames online over the past few years. “Everyone knows me under many different aliases. Let’s actually call me mainly Pulpo. I also used ‘Creeper, ‘Impotent,’ ‘Kmeta,’ ‘KmetaNaEvropa,’ and ‘Promise,’ but on my markets, I was usually just ‘Admin.’ The main identities I love…
Nova Scotia government still unsure of widespread impact from spring cyberattack
Jonathan MacInnis reports: The province of Nova Scotia is still unsure of how widespread the MOVEit security breach is, nearly two-and-a-half months after first becoming aware of the issue. Almost 1000 notifications have been sent out this month. “As you start getting into forensics you can find out that that trail can lead back a…
Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’
Brian Krebs writes: WormGPT, a private new chatbot service advertised as a way to use Artificial Intelligence (AI) to write malicious software without all the pesky prohibitions on such activity enforced by the likes of ChatGPT and Google Bard, has started adding restrictions of its own on how the service can be used. Faced with customers trying to…
Russia ‘prime suspect’ in cyber attack which saw names and addresses of 40M UK voters exposed – reports
Imogen Howse reports: Russia is suspected to have been behind a cyber attack which exposed the data of tens of millions of voters in the UK, raising fears it was an attempt to undermine democracy. The Electoral Commission admitted on Tuesday (8 August) that hackers had been able to access reference copies of electoral registers from between the years…
White House Announces Efforts to Strengthen K-12 Schools’ Cybersecurity
Joseph J. Lazzarotti of JacksonLewis writes: In a 2019 post about increasing cyber risks in K-12 schools, we cited a report, “The State of K-12 Cybersecurity: 2018 Year in Review,” that contained sobering information about cybersecurity in local school districts across the country. According to that report, in 2018, there were 122 publicly-disclosed cybersecurity incidents…
Researchers find active campaigns exploiting two Kubernetes misconfigurations
Steve Zurier reports: Aqua Security on Tuesday reported that at least 60% of the Kubernetes clusters they researched were breached and had an active campaign with deployed malware and backdoors. In a release Aug. 8, Aqua Nautilus researchers explained that the exposures were caused by two misconfigurations, which emphasized how known and unknown misconfigurations are…