-
OpenAI Confirms ChatGPT Leak Contains User Billing Data
The leak is caused by a bug in the Redis database.OpenAI stated that a Redis database bug caused ChatGPT to crash and leak data when users saw other users' personal information and chat requests.An OpenAI representative officially confirmed that on March 20, due to a glitch in the privacy settings, ChatGPT briefly showed other people's conversation histories of random users of the platform.In addition, several ChatGPT Plus subscribers also reported seeing other people's email addresses on their subscription pages.OpenAi released a report today explaining that a bug in the Redis library caused ChatGPT to display...
-
The FBI confirms it has access to the closed BreachForums
Small mistakes by the forum owner allowed the FBI to reveal his identity and gain access to the site.The FBI has confirmed that the Bureau has access to the database of the well-known hacker forum BreachForums (Breached), after the US Department of Justice also officially announced the arrest of the forum's owner.According to court documents, FBI Special Agent John Longmire revealed that the FBI had a Breached database that helped establish that Fitzpatrick ("pompompurin") was indeed the forum's chief administrator. The conclusions are based on the activity logs and the ISP used by Pompompurine Optimum...
-
Deutsche Bank data is being sold on the dark web
An unknown hacker under the pseudonym "Alliswell" on the popular dark web hacking forum BreachForums is selling confidential files allegedly stolen from Deutsche Bank by the LockBit group.A user named Alliswell claims to own 50 GB of Deutsche Bank data and will sell it to the highest bidder. According to the hacker, the information contains not only the data of Deutsche Bank employees, but also the source code of the banking application.The post also lists several separate "lockbitfile" links as proof that all files are present. Each link is divided into categories:API source code;corporate documents;employee...
-
LockBit is the most popular extortionist gang in the world
The LockBit ransomware was first discovered in September 2019. It was previously known as ABCD because of the ".abcd" extension given to encrypted files. LockBit currently uses the malware of the same name and operates on a ransomware-as-a-service (RaaS) model, which means partners make a deposit to use the tool and then share the ransom with LockBit operators. It is well known that some partners receive a share of up to 75%.LockBit's initial attack vectors include social engineering such as phishing, spear-phishing and business email compromise (BEC), use of public applications, hiring Initial Access Brokers...
-
Three more US regions announce plans to regulate therapeutic psilocybin
The year 2023 began for the US with a veritable wave of regional projects to decriminalize or regulate the production and use of psilocybin for therapeutic purposes. If last year, only two states discussed such an initiative, then by the beginning of this year, projects aimed at such reforms had already been submitted to the legislative assemblies of 10 regions of the country. By the start of the week, the number had increased by three more as psilocybin reform bills entered the parliaments of Connecticut, Massachusetts, and Oklahoma.In Connecticut, a similar bill, or rather its...
-
Medusa ransomware gang gains momentum and attacks companies around the world
The Medusa extortion campaign began in June 2021. Then its activity was relatively low, and there were few victims. This year, the situation has changed: the gang stepped up and launched its own blog, used to publish data leaks of victims who refused to pay the ransom.The Medusa group has gained media attention after claiming responsibility for the attack on the Minneapolis school system and even sharing a video of stolen data.Many malware families are named "Medusa". These include a Mirai-based botnet with ransomware capabilities, Android malware, and the notorious MedusaLocker ransomware operation. These are...
-
Mutual attacks of hackers: Lazarus Group against Euler Finance cracker
Lazarus Group, which hacked the Ronin blockchain bridge, is now hunting for the attacker who stole $200 million from the Euler Finance protocol.The North Korean pro-government hackers Lazarus Group, responsible for hacking the Ronin blockchain bridge in March 2022 and stealing $625 million worth of assets from the Axie Infinity crypto project, attempted to gain access to the wallet of the attacker who stole $200 million from the Euler Finance protocol.Euler Finance is an Ethereum-based DeFi platform offering crypto lending services. The platform was hacked on March 13, when a hacker stole approximately $197 million...
-
General Bytes Bitcoin ATMs Hacked: $1.5 Million Stolen
The company regularly conducted security audits, but the attackers found the vulnerability earlier.Leading Bitcoin ATM maker General Bytes said that hackers managed to steal cryptocurrency from the company and its customers using a zero-day vulnerability in the BATM management platform.General Bytes makes bitcoin ATMs that allow people to buy or sell over 40 virtual crypto coins. The company's corporate customers can deploy their ATMs using standalone management servers or the General Bytes cloud service.The company said over the weekend that hackers exploited a zero-day vulnerability tracked as BATM-4780 to remotely download a malicious Java application...
-
Lazarus hackers infect security professionals with previously unknown backdoors
North Korean hackers are attacking cybersecurity researchers and media organizations in the US and Europe with fake job offers that lead to the deployment of three new families of malware, Mandiant said.The attackers use social engineering to convince their targets to contact them via WhatsApp, where they deliver a malware payload of "PlankWalk", a C++ backdoor that allows hackers to gain a foothold in the target's corporate environment, onto victims' devices.Experts have been tracking the campaign since June 2022 and have attributed it to a group they track as "UNC2970". In addition, the attackers are...
-
SymStealer vulnerability puts every Google Chrome user at risk
The Imperva Red team at the end of last year discovered a vulnerability in the popular Google Chrome browser, which is tracked under the identifier CVE-2022-3656. At the time the vulnerability was active, it affected over 2.5 billion Chrome users and allowed hackers to steal sensitive files such as crypto wallets and cloud provider credentials.The vulnerability was discovered while testing how the browser interacts with the file system, in particular looking for common vulnerabilities related to how browsers handle symbolic links. Symbolic links (symlink) are a type of file that points to another file or...
