A new ransomware has been identified, which is believed to be the first-ever ransomware strain that leverages a local AI model to generate its malicious components. Dubbed “PromptLock” by the ESET Research team that discovered it, the malware uses OpenAI’s gpt-oss:20b model via the Ollama API to create custom, cross-platform Lua scripts for its attack chain. #ESETResearch has discovered the …
Read More »
ESET malware researchers Anton Cherepanov and Peter Strycek have discovered what they describe as the “first known AI-powered ransomware,” which they named PromptLock. The good news, according to the duo, who detailed PromptLock in a series of social media posts and screenshots on Tuesday, is that the malware doesn’t appear to be fully functional — yet. “Although multiple indicators suggest the …
Read More »
Hackers responsible for a cyberattack that forced St. Paul to shut down its computer systems two weeks ago demanded a ransom from the city, the mayor’s office confirmed this weekend. But there is no evidence so far that the hackers obtained any data from the city in their attack, according to Jennifer Lor, Mayor Melvin Carter’s press secretary. The city …
Read More »Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure The Hacker News Scattered Spider is running a VMware ESXi hacking spree BleepingComputer UNC3944 Attacking VMware vSphere and Enabling SSH on ESXi Hosts to Reset ‘root’ Passwords CyberSecurityNews Cybercrime trendsetter Scattered Spider rarely needs to hack Techzine Global Scattered Spider Targeting VMware vSphere Environments SecurityWeek Source link
Read More »Microsoft cyberattack expands: Ransomware deployed, South African Treasury hit (MSFT:NASDAQ) Seeking Alpha Microsoft says some SharePoint server hackers now using ransomware Reuters Disrupting active exploitation of on-premises SharePoint vulnerabilities Microsoft Microsoft Hack Hits Hundreds of Firms, Agencies as Damage Spreads Yahoo Finance ToolShell: An all-you-can-eat buffet for threat actors WeLiveSecurity Source link
Read More »Microsoft says some SharePoint server hackers now using ransomware Reuters Disrupting active exploitation of on-premises SharePoint vulnerabilities Microsoft Chinese Hackers Are Exploiting Flaws in Widely Used Software, Microsoft Says The New York Times DHS impacted in hack of Microsoft SharePoint products, people familiar say Nextgov/FCW Nuclear Weapons Agency Breached in Microsoft SharePoint Hack Bloomberg.com Source link
Read More »