AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 6/27/2024

New tool detects AI-generated videos with 93.7% accuracy

Earlier this year, an employee at a multinational corporation sent fraudsters $25 million. The instructions to transfer the money came—the employee thought—straight from the company’s CFO. In reality, the criminals had used an AI program to generate realistic videos of the CFO and several other colleagues in an elaborate scheme. Videos created by AI have become so realistic that humans (and existing detection systems) struggle to distinguish between real and fake videos. To address this problem, Columbia Engineering researchers, led by Computer Science Professor Junfeng Yang, have developed a new tool to detect AI-generated video called DIVID, short for DIffusion-generated VIdeo Detector. 

 

US Charges Russian Individual for Pre-Invasion Ukraine Hack

The US Department of Justice (DoJ) has charged a Russian national, Amin Timovich Stigal, aged 22, for hacking into and destroying the Ukrainian government’s computer systems and data ahead of the Russian invasion in February 2022. On June 25, a federal grand jury in Maryland returned an indictment charging Stigal with conspiring with Russian Military Intelligence (GRU) in advance of the full-scale Russian invasion of Ukraine. Stigal’s alleged targets included Ukrainian government IT systems and data with no military or defense-related roles and computer systems in countries that were providing support to Ukraine, including the US.

 

Evolve Bank & Trust Confirms Data Was Stolen in Cyberattack

Evolve Bank & Trust confirmed it was the victim of a cyberattack and that customer data had been posted on the dark web, less than two weeks after the Arkansas-based lender was ordered by regulators to improve its risk management and get approval before entering into any new partnerships. The Russian-linked hacker group LockBit 3.0 on Tuesday posted data taken from Evolve’s systems after claiming earlier in the week that it had hacked the US Federal Reserve, giving US officials until Tuesday afternoon to pay an undisclosed amount in exchange for the information purportedly stolen from the central bank’s systems. So far, it does not appear that any sensitive data from the Fed has been released by the group.

 

Polyfill claims it has been ‘defamed’, returns after domain shut down

The owners of Polyfill.io have relaunched the JavaScript CDN service on a new domain after polyfill.io was shut down as researchers exposed it was delivering malicious code on upwards of 100,000 websites. The Polyfill service claims that it has been “maliciously defamed” and been subject to “media messages slandering Polyfill.” The Polyfill.io domain appears to have been shut down as of today by its registrar Namecheap.

 

US, Allies Warn of Memory Unsafety Risks in Open Source Software

Government agencies in the US, Australia, and Canada are drawing attention to memory safety issues in open source software (OSS) code, warning that most projects vastly use code written in a memory-unsafe language. The use of such code introduces memory safety vulnerabilities that expose organizations and users to attacks, CISA, the FBI, Australia’s Cyber Security Center (ACSC), and the Canadian Centre for Cybersecurity (CCCS) note in their joint guidance. The document, titled Exploring Memory Safety in Critical Open Source Projects (PDF), was published half a year after government agencies in the US, UK, Canada, Australia, and New Zealand released recommendations for software makers to eliminate memory safety bugs.

Related Posts