CybelAngel

ESET researchers have identified PromptLock, the first known ransomware variant to integrate a large language model into its attack chain. This marks a significant evolution in automated cyber threats. The malware, written in Golang, connects to an OpenAI model via the Ollama API on a remote server. It then uses embedded prompts to command the AI to generate malicious Lua scripts on the fly. These scripts are custom-built to carry out tasks including filesystem enumeration, data exfiltration, and file encryption. This dynamic script generation makes the malware more versatile and potentially harder to detect. The cross-platform nature of PromptLock, targeting Windows, macOS, and Linux, further broadens its threat landscape. Read more via BleepingComputer: https://bit.ly/4n5sNRQ

CybelAngel is accelerating growth in the Frabelux market, and the sales team is expanding to meet new demand. We're searching for ambitious Sales Development Representatives ready to engage leading enterprises and drive value. As an SDR, expect to work closely with top-tier organizations, prospecting, building relationships, attending top cyber events and a lot more: https://lnkd.in/eEUQZMna

Fraudsters are leveraging AI to create highly convincing synthetic identities, bypassing traditional KYC and biometric checks. With no "real" victim to report, this fraud silently builds credit, making detection a significant challenge for financial institutions. Read more in our analysis: https://bit.ly/45TTYI8

Who is behind the ransomware gang responsible for as many as 170 cyber attacks in a single month? Find out all about PLAY in our latest blog: https://bit.ly/3HNJWQS

Shadow IT? Unsanctioned, forgotten, or vulnerable external assets are invisible to you—but not to attackers. Protect your attack surface before it’s too late: https://lnkd.in/ecyfRRNa

Social engineering attacks are going nowhere. Workday has confirmed falling victim to a widespread attack that allowed hackers to access data through one of its third-party vendors. The stolen information included Workday customers' names, email addresses, and phone numbers: https://bit.ly/45IV9tU

APIs are the glue that hold applications together. They power logins, payments, searches, and dashboards. (And often, without users even knowing they exist.) But as they’ve grown more powerful, they’ve also become a favorite target for attackers. From stolen tokens to broken authorization, we’ve seen how quiet flaws in APIs can lead to major security incidents: https://bit.ly/45m0TcX

Did you know that CybelAngel integrates seamlessly with leading cybersecurity and IT management platforms? This includes SIEM, SOAR, and ITSM solutions like Splunk, ServiceNow, and IBM Security SOAR, alongside communication tools such as Slack. These integrations are facilitated via its robust API and the no-code CybelAngel Connect platform, enabling automated and efficient security workflows.

The cloud offers flexibility, but it also creates a sprawling, dynamic attack surface. From misconfigured S3 buckets to exposed APIs, your cloud environment is a prime target. An Attack Surface Management tool is a non-negotiable for securing your cloud footprint. Find out more: https://lnkd.in/eRGcbGRN

Einladung zum Webinar „External Threat Intelligence in der Praxis“ am 25. September um 09:15 Uhr. Gemeinsam mit unserem Partner CybelAngel aus Paris laden wir zu einem spannenden Webinar ein, in dem wir mit Gerhard Burtscher, Head of Information Security bei Sefar Group, darüber sprechen, wie Unternehmen und Organisationen ihre externe Angriffsfläche erkennen, bewerten und gezielt reduzieren können. Diese Schwerpunkte stehen dabei im Fokus: -Warum klassische Schutzmaßnahmen bei externen Bedrohungen nicht mehr ausreichen - Aus der Praxis: So gewinnt Sefar Einblicke in die externe Angriffsfläche - Wie CybelAngel Shadow Assets, offene Datenlecks, kompromittierte Zugangsdaten u. v. m. findet und diese Informationen aufbereitet Das Webinar richtet sich an Entscheidungsträger und Experten aus den Bereichen IT und Cybersicherheit. Anmeldung unter: https://lnkd.in/dGSxPtfJ Gerne stehen Lukas Jansen, MA von CybelAngel und ich darüber hinaus auch für individuelle Gespräche zur Verfügung. https://lnkd.in/dt8z4XMs Challenging the Status quo in Cybersecurity! #colited #cybersecurity