Infosecurity Magazine

OpenAI and Anthropic LLMs Used in Critical Infrastructure Cyber-Attack, Warns Dragos

Commercial AI models were used to help plan and conduct cyber-attack against operational technology of a water and drainage ...
Infosecurity Magazine

Fake Claude AI Site Drops Beagle Backdoor on Windows Users

A fraudulent imitation of Anthropic's Claude website has been used to distribute a previously undocumented backdoor named ...
Infosecurity Magazine

Cline Kanban Flaw Lets Websites Hijack AI Coding Agents

Cline is one of the most widely adopted open-source AI coding assistants, and its Kanban feature provides a web-based project ...
Infosecurity Magazine

Daemon Tools Developer Confirms Software Was Trojanized

Earlier this week, Kaspersky warned that Daemon Tools software installers distributed from the main website had been ...
Infosecurity Magazine

Researchers Spot Uptick in Use of Vercel for Phishing Campaigns

Cofense claimed to have observed a variety of phishing campaigns that used Vercel Gen AI tools, including Microsoft landing ...
Infosecurity Magazine

CISA Urges Critical Infrastructure Providers to Make Plans to Remain Operational if hit by Cyber-Attack

The call came from the US Cybersecurity and Infrastructure Security Agency (CISA), which launched the initiative, named CI ...
Infosecurity Magazine

Iran-Linked APT Posed as Chaos Ransomware Member in Espionage Campaign

An APT group linked to the Iranian government pretended to be a Chaos ransomware affiliate in order to provide plausible ...
Infosecurity Magazine

CloudZ Malware Abuses Phone Link to Steal SMS OTPs

A Windows malware toolkit has been observed stealing SMS messages and one-time passwords (OTPs) from victim machines by ...
Infosecurity Magazine

One in Eight Workers Has Sold Their Corporate Logins

Malicious incidents accounted for 27% ($4.7m) of the total lost to insider risks last year, according to DTEX. On average, ...
Opinion
Infosecurity MagazineOpinion

Open Source is the Tip of the Iceberg: Why Proprietary Software, Hardware and Protocols Face Greater AI-Driven Security Risk

Project Glasswing scans open-source code for vulnerabilities. But open source was already the most scrutinized software on earth. The real exposure is everywhere else ...
Infosecurity MagazineOpinion

Five Years Later: Lessons Learned From Colonial Pipeline Ransomware Attack

A coordinated government response helped contain the ransomware attack that disrupted America’s gas supply. Are we ready for ...