Software Startup Rippling Sues Competitor Deel, Claiming a Spy Carried Out ‘Corporate Espionage’

HR software startup Rippling has sued competitor Deel, alleging that Deel orchestrated corporate espionage by recruiting an employee within Rippling to steal trade secrets, including customer data, sales strategies, and internal records. The lawsuit (P… Continue reading Software Startup Rippling Sues Competitor Deel, Claiming a Spy Carried Out ‘Corporate Espionage’

ChatGPT Vulnerability Exploited Against US Government Organizations

A year-old vulnerability in ChatGPT is being exploited against financial entities and US government organizations.
The post ChatGPT Vulnerability Exploited Against US Government Organizations appeared first on SecurityWeek.
Continue reading ChatGPT Vulnerability Exploited Against US Government Organizations

Python Bot Delivered Through DLL Side-Loading, (Tue, Mar 18th)

One of my hunting rules triggered some suspicious Python code, and, diving deeper, I found an interesting example of DLL side-loading. This technique involves placing a malicious DLL with the same name and export structure as a legitimate DLL in a location the application checks first, causing the application to load the malicious DLL instead of the intended one. This is a classic vulnerability seen for years in many software. The attacker also implemented simple tricks to bypass classic security controls.

Continue reading Python Bot Delivered Through DLL Side-Loading, (Tue, Mar 18th)

Posted in Uncategorized

Microsoft Warns of StilachiRAT: A Stealthy RAT Targeting Credentials and Crypto Wallets

Microsoft is calling attention to a novel remote access trojan (RAT) named StilachiRAT that it said employs advanced techniques to sidestep detection and persist within target environments with an ultimate aim to steal sensitive data.
The malware conta… Continue reading Microsoft Warns of StilachiRAT: A Stealthy RAT Targeting Credentials and Crypto Wallets

Posted in Uncategorized

How financial institutions can minimize their attack surface

In this Help Net Security interview, Sunil Mallik, CISO of Discover Financial Services, discusses cybersecurity threats for financial institutions. He also shares insights on balancing compliance with agility, lessons from regulatory audits, and Discov… Continue reading How financial institutions can minimize their attack surface

Hackers target AI and crypto as software supply chain risks grow

The growing sophistication of software supply chain attacks is driven by widespread flaws in open-source and third-party commercial software, along with malicious campaigns that specifically target AI and cryptocurrency development pipelines, according… Continue reading Hackers target AI and crypto as software supply chain risks grow