LATEST POST
U.S. State Privacy Laws: Making Sense of the Mess
Law professor Daniel Solove writes: Read more on LinkedIn.
Guess who left a database wide open, exposing chat logs, API keys, and more? Yup, DeepSeek
“This database contained a significant volume of chat history, backend data and sensitive information, including log streams, API Secrets, and operational details.” It appears that DeepSeek — the same AI platform that sent tech stocks crashing because it might be better and was definitely cheaper than U.S. AI platforms — could not get basic security […]
FBI Seizes Hacking Forums Nulled.to and Cracked.io
Some long-standing hacking forums are standing no more. They have been seized by law enforcement in an international cooperative operation. PC Mag reports: The FBI has seized a pair of internet forums dedicated to computer hacking and forced the affected domains offline. The crackdown ensnared Cracked[.]io and Nulled[.]to, two forums known for hosting and selling […]
ENGlobal says hackers accessed ‘sensitive personal’ data during cyberattack
TechCrunch reports that the engineering giant and government contractor was impacted significantly for six weeks following a ransomware attack in November: U.S. engineering firm ENGlobal has confirmed that hackers accessed “sensitive personal information” from its systems during a November 2024 cyberattack. ENGlobal, which provides engineering and automation services to the federal government and critical infrastructure organizations, […]
Hackers Claim 2nd Breach at HP Enterprise, Plan to Sell Access
HackRead reports that Hewlett Packard Enterprise (HPE) has been hacked for a second time by the threat actor known as IntelBroker: IntelBroker, a notorious hacker linked to prior high-profile cyberattacks, has announced an alleged new data breach of Hewlett-Packard Enterprise (HPE). The hacker claims to have accessed and cloned new data from HPE’s repositories. Although […]
Aoki Holdings Confirms Data Breach at Subsidiary Potentially Affecting Millions
From Aoki Holdings in Japan, this updated statement of January 28, 2025: Additional information can be found at Aoki Holdings (.pdf). Those responsible for the attack have not been publicly identified or claimed responsibility for the attack. Aoki’s statement does not indicate whether they received an extortion demand or not.
DeepSeek halted new signups amid “large-scale” cyberattack
A Chinese AI platform DeepSeek sent tech stocks crashing yesterday when investors realized that DeepSeek was cheaper and maybe better than what U.S. tech has produced. It wasn’t long afterwards that DeepSeek got hit with a cyberattack. Bleeping Computer reported it: Chinese AI platform DeepSeek has disabled registrations on its DeepSeek-V3 chat platform due to […]
How GhostGPT Empowers Cybercriminals with Uncensored AI
Need a well-written phishing email but your English is not up to snuff? For a mere $50.00, you can get a chatbot to write malicious code for you. Abnormal Security reports: Artificial intelligence (AI) tools have changed the way we tackle day-to-day tasks, but cybercriminals are twisting that same technology for illegal activities. In 2023, WormGPT made […]