On the Hugging Face platform, at least 100 malicious AI ML models were discovered, some of which could execute code on the victim’s machine, exposing attackers to a persistent backdoor. Hugging Face is a tech company that specializes in machine learning ( ML), natural language processing ( NLP), and artificial intelligence ( AI ). It…

According to an executive order signed by U. S. President Joe Biden, the bulk sale and transfer of Americans ‘ private information is prohibited in” countries of concern” like China, Russia, Iran, North Korea, Cuba, and Venezuela. ” Our adversaries are compromising our national security by utilizing our country’s sensitive personal information.” Attorney General Merrick…

The Lurie Children’s Hospital in Chicago cyberattack was carried out at the start of the month by the Rhysida ransomware gang. Over 200, 000 children are treated annually at Lurie, a top pediatric acute care facility in the United States. The healthcare provider was forced to shut down its IT systems and, in some cases,…

Version 2024. 1, the first iteration of 2024, includes four brand-new tools, a fresh theme, and desktop modifications. For penetration testing, security audits, and network research, Kali Linux was created for cybersecurity professionals and ethical hackers. The Kali Team has added new visual elements, including wallpapers, updates to the login display and boot menu, as…

Image: Midjourney A cyberattack on Optum, a subsidiary of UnitedHealth Group ( UGG), which resulted in an ongoing outage affecting the Change Healthcare platform, has been officially claimed responsibility by the BlackCat/ALPHV ransomware gang. The largest payment exchange platform used by more than 70, 000 American pharmacies is Change Healthcare. With 440, 000 employees worldwide…

Following last week’s disruption by law enforcement, the LockBit ransomware gang is once more launching attacks using updated encryptors and ransom notes that link to new servers. In response to the LockBit ransomware operation, the NCA, FBI, and Europol organized a coordinated disruption known as” Operation Cronos.” In an embarrassing moment for LockBit, law enforcement…

To gain kernel privileges, lazarus hackers took advantage of Windows zero-day North Korean threat actors known as the Lazarus Group exploited a flaw in the Windows AppLocker driver ( appid. sys ) as a zero- day to gain kernel- level access and turn off security tools, allowing them to bypass noisy BYOVD ( Bring Your…

After the Mogilevich extortion group claimed to have breached the company’s servers, Epic Games claimed to have found no proof of a cyberattack or data theft. Epic Games told BleepingComputer in a statement that” we are investigating but there is no conclusive evidence that these claims are true.” ” Mogilievich has not contacted Epic or…

The notorious North Korean hacking group Lazarus has uploaded four malicious PyPI packages to infect developers with malware, according to Japan’s Computer Security Incident Response Team ( JPCERT/CC). Python Package Index ( Python Package Index ) is a repository of open-source software that Python developers can use to add more functionality to their Python projects…