Large-Scale Operation Steals Cloud Credentials from Exposed Git Repositories

Nov 1, 2024 | Podcast

https://sysdig.com/blog/emeraldwhale A large-scale cyber operation named “EmeraldWhale” has compromised thousands of private repositories by exploiting exposed Git configuration files. Hackers used automated tools to scan a massive range of IP addresses...

Your Site Was Hacked, and You Never Knew About It: My Real-Life Encounter with a Supply Chain Attack

Nov 1, 2024 | Articles, Podcast

Just yesterday, I received a LinkedIn message about an interesting job opportunity, complete with a link to the job ad. Before clicking, I took a quick look at the URL to ensure it was legitimate—something we all do in this line of work. The website appeared normal...

Fake Browser Update Malware Targets WordPress Sites via Malicious Plugins

Oct 31, 2024 | Podcast

https://www.bleepingcomputer.com/news/security/over-6-000-wordpress-sites-hacked-to-install-plugins-pushing-infostealers WordPress website owners beware! A new wave of attacks is targeting your sites to install malicious plugins that display fake software updates and...

Mandiant Report: Exploited Vulnerabilities Reach Record Lows in Time to Patch, But Zero-Days on the Rise

Oct 30, 2024 | Podcast

https://cloud.google.com/blog/topics/threat-intelligence/time-to-exploit-trends-2023 A new report by cybersecurity firm Mandiant reveals a concerning trend: attackers are exploiting vulnerabilities faster than ever before, with zero-day attacks (exploits for unknown...

Massive UN Data Leak Exposes Personal Information of Violence Against Women Victims

Oct 29, 2024 | Podcast

https://www.vpnmentor.com/news/report-unwomen-breach A security researcher uncovered a massive data leak from the UN Trust Fund to End Violence against Women, jeopardizing the privacy of victims and staff. The UN Trust Fund’s database was misconfigured and...

AI Transcription Tool “Whisper” Creates Fabricated Text, Raising Concerns in Healthcare and Beyond

Oct 28, 2024 | Podcast

https://apnews.com/article/ai-artificial-intelligence-health-business-90020cdf5fa16c79ca2e5b6c4c9bbb14 Popular AI tool Whisper, lauded for its accuracy, has a major flaw: it invents entire sentences or phrases, raising concerns about its use in healthcare, closed...