Lifeboat Foundation

Check out all the on-demand sessions from the Intelligent Security Summit here.

In recent years, cloud computing has proven itself as one of the fundamental technologies empowering modern enterprises with on-demand connectivity. Without it, the widespread move toward hybrid work wouldn’t have been possible during the COVID–19 pandemic. Yet what about cybersecurity in this new cloud-centric world?

The convenience of instant connectivity has created new vulnerabilities for security teams to confront, and many organizations are still playing catchup, with 81% of organizations experiencing cloud-related security incidents in the past year.

An explosion of cyberattacks is infecting servers around the world with crippling ransomware by exploiting a vulnerability that was patched two years ago, it was widely reported on Monday.

The hacks exploit a flaw in ESXi, a hypervisor VMware sells to cloud hosts and other large-scale enterprises to consolidate their hardware resources. ESXi is what’s known as a bare-metal, or Type 1, hypervisor, meaning it’s essentially its own operating system that runs directly on server hardware. By contrast, servers running the more familiar Type 2 class of hypervisors, such as Oracle’s VirtualBox, run as apps on top of a host operating system. The Type 2 hypervisors then run virtual machines that host their own guest OSes, such as Windows, Linux, or, less commonly, macOS.

Germany has chosen European Central Bank Director General of Information Systems Claudia Plattner as the new head of its cybersecurity agency, the first female appointed to the role.

Royal Ransomware is the latest ransomware operation to add support for encrypting Linux devices to its most recent malware variants, specifically targeting VMware ESXi virtual machines.

BleepingComputer has been reporting on similar Linux ransomware encryptors released by multiple other gangs, including Black Basta, LockBit, BlackMatter, AvosLocker, REvil, HelloKitty, RansomEXX, and Hive.

The new Linux Royal Ransomware variant was discovered by Will Thomas of the Equinix Threat Analysis Center (ETAC), and is executed using the command line.

Basically I underestimated chat gpt it is Basically much more powerful than I realized not just a Jetson society but it could even bring realities like we have seen in star trek the next generation where one can ask an AI anything and it can do anything given a task. This could also bring upon a superintelligence once programmed much like a wolfram alpha is for homework but for everything. It can nearly do any job and can replace all tech jobs eventually to get to universal basic income or even bring an end to the wild west of the internet it could create a near perfect cyber defense because it could simply know everything and make everything bug free. In short it can a near God like AI to answer and do any digital task. This can make nearly all jobs eventually automated:3.

It’ll be a while before ChatGPT takes your job entirely, and in the meantime you can use it to make work life easier.

Juan Andres Guerrero-Saade’s speciality is picking apart malicious software to see how it attacks computers.

It’s a relatively obscure cybersecurity field, which is why last month he hosted a weeklong seminar at Johns Hopkins University where he taught students the complicated practice of reverse engineering malware.

Continue reading “Want to build a website? Just ask ChatGPT in plain English” »

A new wave of #ransomware attacks is exploiting a #VMware vulnerability to target #ESXi hypervisor servers.

Searching Google for downloads of popular software has always come with risks, but over the past few months, it has been downright dangerous, according to researchers and a pseudorandom collection of queries.

“Threat researchers are used to seeing a moderate flow of malvertising via Google Ads,” volunteers at Spamhaus wrote on Thursday. “However, over the past few days, researchers have witnessed a massive spike affecting numerous famous brands, with multiple malware being utilized. This is not ‘the norm.’”.

Stay ahead of the game with top-notch cybersecurity measures. The attacks may be becoming more severe, but so are our defenses.