Security News

AI Bots on X (Twitter)
2024-01-22 12:09

You can find them by searching for OpenAI chatbot warning messages, like: "I'm sorry, I cannot provide a response as it goes against OpenAI's use case policy." I hadn't thought about this before: identifying bots by searching for distinctive bot phrases.

NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
2024-01-22 11:22

Cybersecurity researchers have discovered a new Java-based "sophisticated" information stealer that uses a Discord bot to exfiltrate sensitive data from compromised hosts. The malware,...

Bad bot traffic skyrockets across the web
2024-01-22 04:00

Bad bots are automated programs designed with malicious intent to perform various activities on the internet, often causing harm to individuals, organizations, and online ecosystems. By masquerading as authentic users, bad bots empower bot operators, attackers, unscrupulous competitors, and fraudsters to execute a diverse range of malicious activities.

Poorly secured PostgreSQL, MySQL servers targeted by ransomware bot
2024-01-18 14:54

Users exposing poorly secured PostgreSQL and MySQL servers online are in danger of getting their databases wiped by a ransomware bot, Border0 researchers are warning. Spurred by a recent tweet in which the poster shared that their accidentally exposted PostgreSQL server was "Immediately" compromised and wiped, Border0 researchers wanted to see whether and how quickly a simple PostgreSQL server - accessible from anywhere on the Internet by using the postgres username and the password password - would be targeted by the same bot once they exposed it online.

What's worse than paying an extortion bot that auto-pwned your database?
2024-01-17 15:00

Publicly exposed PostgreSQL and MySQL databases with weak passwords are being autonomously wiped out by a malicious extortion bot - one that marks who pays up and who is not getting their data back. Origin unknown, the bot is routinely breaching poorly protected databases within hours of exposure to the internet, according to security researchers at Border0.

Escalating cyber threats: Bots, fraud farms, and cryptojacking surge, urgently requiring attention
2024-01-05 04:30

Cybercriminals turn to ready-made bots for quick attacks. Bots and human fraud farms were responsible for billions of attacks in the H1 of 2023 and into Q3, according to Arkose Labs.

Cybercriminals Using Telekopye Telegram Bot to Craft Phishing Scams on a Grand Scale
2023-11-24 15:32

More details have emerged about a malicious Telegram bot called Telekopye that's used by threat actors to pull off large-scale phishing scams. "Telekopye can craft phishing websites, emails, SMS...

Cybercriminals turn to ready-made bots for quick attacks
2023-11-23 05:30

Researchers assessed the attacks across three primary attack vectors: basic bots, intelligent bots, and human fraud farms. The analysis found bot attacks overall increased 167% in the H1 of 2023, weighted heavily by a 291% increase in intelligent bots.

AI-enabled bots can solve CAPTCHAs faster than humans
2023-10-13 03:00

Companies are losing revenue in the fight against malicious bot attacks, according to survey by Kasada. Despite spending millions of dollars on traditional bot management solutions, companies are still financially impacted by bot attacks.

AWS stirs the MadPot – busting bot baddies and eastern espionage
2023-10-02 10:45

Interview AWS has unveiled MadPot, its previously secret threat-intelligence tool that one of the cloud giant's security execs tells us has thwarted Chinese and Russian spies - and millions of bots. The massive honeypot system has been around since 2010, and includes tens of thousands of threat sensors monitoring criminals' attempts to connect with AWS decoys.