While many of us rely on AI for various purposes, there are those with anti-AI agendas who operate without seeking profit. Recently, a new threat actor has emerged to target AI and gaming companies utilizing AsyncRAT and Xworm. Additionally, some threat actors were found compromising popular EDR tools in ransomware attacks. A recent report revealed a 30% surge in global cyberattacks in Q2 2024, with the education and research sector experiencing a 53% increase compared to Q2 2023. Read on for more cybersecurity news from the last 24 hours.
01
NullBulge, a new threat group, has been targeting AI and gaming companies by weaponizing code in GitHub and Hugging Face repositories using tools like AsyncRAT and Xworm.
02
Threat actors were found leveraging Killer Ultra malware to target EDR tools from Symantec, Microsoft, and Sentinel One in ransomware attacks.
03
FIN7 has been observed executing automated SQL injection attacks against public-facing applications using a new version of AvNeutralizer, which leverages the Windows built-in driver ProcLaunchMon.sys to tamper with security solutions.
04
Several hacker groups, including CyberDragon and the Cyber Army of Russia, have been targeting the Romanian government entities and banking sector in geopolitical DDoS attacks.
05
The TAG-100 threat group exploited internet-facing devices and used open-source tools such as the Go backdoor Pantegana to attack two intergovernmental organizations in the APAC region and diplomatic and trade entities in a cyber-espionage campaign.
06
A threat actor has been found using an MSI format installer to distribute Quasar RAT through HPlus, a private home trading system.
07
Researchers disrupted a massive ad fraud operation, Konfety, that used CaramelAds SDK and employed an ‘evil twin’ evasion method to maintain over 250 decoy applications on the Google Play Store.
08
Threat actors are actively exploiting a critical security vulnerability (CVE-2024-27348) impacting the Apache HugeGraph Server that could lead to RCE attacks.
09
As per a report, global cyberattacks surged by 30% in Q2 2024, with the education and research sector being the most targeted, experiencing a 53% increase in attacks in Q2 2024 compared to Q2 2023.
10
XBOW, a startup focused on automating vulnerability research and mitigation, has raised $20 million in venture capital funding to boost offensive security.
