A newly devised “polymorphic” attack allows malicious Chrome extensions to morph into other browser extensions, including password managers, crypto wallets, and banking apps, to steal sensitive information.
The attack was devised by SquareX Labs, which warns of its practicality and feasibility on the latest version of Chrome. The researchers have responsibly disclosed the attack to Google.
OpenAI is betting big on ChatGPT, which is generating at least $4 billion in annualized revenue. But that’s not the only application the AI firm is hoping will make big bucks. If you saw our story last month detailing OpenAI’s financial projections, you might have noticed an intriguing reference…
Threat actors deploying the Black Basta and CACTUS ransomware families have been found to rely on the same BackConnect (BC) module for maintaining persistent control over infected hosts, a sign that affiliates previously associated with Black Basta may have transitioned to CACTUS.
“Once infiltrated, it grants attackers a wide range of remote control capabilities, allowing them to execute commands on the infected machine,” Trend Micro said in a Monday analysis. “This enables them to steal sensitive data, such as login credentials, financial information, and personal files.”
It’s worth noting that details of the BC module, which the cybersecurity company is tracking as QBACKCONNECT owing to overlaps with the QakBot loader, was first documented in late January 2025 by both Walmart’s Cyber Intelligence team and Sophos, the latter of which has designated the cluster the name STAC5777.
Attackers are using typosquatted Go packages to deploy malware on Linux and macOS, targeting financial developers.
Posted in biotech/medical, finance, life extension, robotics/AI | Leave a Comment on Microsoft Dragon Copilot provides the healthcare industry’s first unified voice AI assistant that enables clinicians to streamline clinical documentation, surface information and automate tasks
REDMOND, Wash. — March 3, 2025 — On Monday, Microsoft Corp. is unveiling Microsoft Dragon Copilot, the first AI assistant for clinical workflow that brings together the trusted natural language voice dictation capabilities of DMO with the ambient listening capabilities of DAX, fine-tuned generative AI and healthcare-adapted safeguards. Part of Microsoft Cloud for Healthcare, Dragon Copilot is built on a secure modern architecture that enables organizations to deliver enhanced experiences and outcomes across care settings for providers and patients alike.
Clinician burnout in the U.S. dropped from 53% in 2023 to 48% in 2024, in part due to technology advancements. However, with an aging population, and persistent burnout felt across the profession, a significant U.S. workforce shortage is projected. In response, health systems are adopting AI to streamline administrative tasks, enhance care access, and enable faster clinical insights to improve healthcare globally.
“At Microsoft, we have long believed that AI has the incredible potential to free clinicians from much of the administrative burden in healthcare and enable them to refocus on taking care of patients,” said Joe Petro, corporate vice president of Microsoft Health and Life Sciences Solutions and Platforms. “With the launch of our new Dragon Copilot, we are introducing the first unified voice AI experience to the market, drawing on our trusted, decades-long expertise that has consistently enhanced provider wellness and improved clinical and financial outcomes for provider organizations and the patients they serve.”
Lumma Stealer is a fully-featured crimeware solution that’s offered for sale under the malware-as-a-service (MaaS) model, giving a way for cybercriminals to harvest a wide range of information from compromised Windows hosts. In early 2024, the malware operators announced an integration with a Golang-based proxy malware named GhostSocks.
“The addition of a SOCKS5 backconnect feature to existing Lumma infections, or any malware for that matter, is highly lucrative for threat actors,” Infrawatch said.
“By leveraging victims’ internet connections, attackers can bypass geographic restrictions and IP-based integrity checks, particularly those enforced by financial institutions and other high-value targets. This capability significantly increases the probability of success for unauthorized access attempts using credentials harvested via infostealer logs, further enhancing the post-exploitation value of Lumma infections.”
