Tag: Exfiltration
-
Third-Party ChatGPT Plugins could lead to Account Takeovers
Cybersecurity researchers discovered vulnerabilities in third-party plugins for OpenAI ChatGPT, posing a threat of unauthorized access to sensitive data. The flaws enable attackers to install malicious plugins and hijack accounts. OpenAI has taken action by discontinuing new plugin installations. New tactics may lead to AI being exploited by malicious actors for data theft, putting unaware…
-
Russian Hackers Stole Microsoft Code – and the Attack isn’t Over!
Microsoft recently disclosed that Russian hackers known as Nobelium have continued their attack on the company, accessing source code and internal systems. The group, responsible for the SolarWinds attack, has been leveraging exfiltrated email information to breach further into Microsoft’s systems. Despite the ongoing attack, there is no evidence of customer-facing systems being breached.
-
Russia-Sponsored Cyberattackers Infiltrate Microsoft’s Code Base
Midnight Blizzard APT, a Russian state-sponsored advanced persistent threat group, has stolen Microsoft source code and is conducting a sustained cyber campaign. The group, also known as APT29, Cozy Bear, Nobelium, and UNC2452, is using stolen information to probe the company’s environment and may be preparing for future attacks. Microsoft noted a tenfold increase in…
You must be logged in to post a comment.