Blog – Page 1063 – Cyber Mike

Google’s AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine

Google said it discovered a zero-day vulnerability in the SQLite open-source database engine using its large language model (LLM) assisted framework called Big Sleep (formerly Project Naptime).
The tech giant described the development as the “first real-world vulnerability” uncovered using the artificial intelligence (AI) agent.
“We believe this is the first public example of an AI agent finding

Siemens and Rockwell Tackle Industrial Cybersecurity, but Face Customer Hesitation

Siemens and Rockwell Automation are taking steps to improve cybersecurity in industrial organizations, but getting customers to install security systems and upgrade ICS can still be challenging.

The post Siemens and Rockwell Tackle Industrial Cybersecurity, but Face Customer Hesitation appeared first on SecurityWeek.

Cisco says DevHub site leak won’t enable future breaches

Cisco says that non-public files recently downloaded by a threat actor from a misconfigured public-facing DevHub portal don’t contain information that could be exploited in future breaches of the company’s systems. […]

Businesses Worldwide Targeted in Large-Scale ChatGPT Phishing Campaign

Barracuda has observed a large-scale OpenAI impersonation campaign whose goal is to phish for ChatGPT credentials.

The post Businesses Worldwide Targeted in Large-Scale ChatGPT Phishing Campaign appeared first on SecurityWeek.

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

Cybersecurity researchers have discovered a new version of a well-known Android malware family dubbed FakeCall that employs voice phishing (aka vishing) techniques to trick users into parting with their personal information.
“FakeCall is an extremely sophisticated Vishing attack that leverages malware to take almost complete control of the mobile device, including the interception of incoming

Meet Interlock — The new ransomware targeting FreeBSD servers

A relatively new ransomware operation named Interlock attacks organizations worldwide, taking the unusual approach of creating an encryptor to target FreeBSD servers. […]

ChatGPT-4o can be used for autonomous voice-based scams

Researchers have shown that it’s possible to abuse OpenAI’s real-time voice API for ChatGPT-4o, an advanced LLM chatbot, to conduct financial scams with low to moderate success rates. […]

Microsoft SharePoint RCE bug exploited to breach corporate network

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial access to corporate networks. […]

Microsoft Outlook workaround fixes freezes when copying text

Microsoft is investigating a known issue that affects Microsoft 365 customers and causes classic Outlook to hang or freeze when copying text. […]

Noma Security Raises $32 Million to Safeguard Gen-AI Applications

Noma provides a platform to protect the data and lifecycle of emerging gen-AI applications, which introduces new threats not covered by existing security controls.

The post Noma Security Raises $32 Million to Safeguard Gen-AI Applications appeared first on SecurityWeek.

Cyber News