Cybersecurity, infosec, ai, malware & much more…
Chatbots News Monday, June 18
- Xen Project patches Intel’s Lazy FPU flaw
CyberSecurity, infosec, AI, Malware, Fintech
- A new MuddyWater Campaign spreads Powershell-based PRB-Backdoor
MuddyWater, CyberSecurity, infosec
- Rick Hilton is Helping Auction Off Italian Mansion for Cryptocurrency
- The Xen Project has revealed that its hypervisor is susceptible to the Lazy FPU flaw found in Intels x86 CPUs.
- An advisory says Systems running all versions of Xen are affected, provided they employ Intel Core based processors (from at least Nehalem onwards).
- Xen said the impact of the flow is as follows: – – An attacker can read x87/MMX/SSE/AVX/AVX-512 register state belonging to another vCPU previously scheduled on the same processor.
- The fix can be found as either a conventional patch or a livepatch thats applicable while Xen runs.
- The Registers virtualization desk has asked VMware if its hypervisors are also affected by Lazy FPU and will update this story if the company has something to say.
@reach2ratan: Xen Project Patches Intel’s Lazy FPU Flaw https://t.co/iwFHwKDPDw#CyberSecurity #infosec #AI #Malware #Fintech… https://t.co/inp1hYPwCO
- Security experts at Trend Micro have spotted a newattack relying on weaponized Word documents and PowerShell scripts thatappears related to the MuddyWater cyber-espionage campaign.
- The attacks have been mistakenly associated with the FIN7 group, when Palo Alto discovered the first campaign reported that a C&C server delivering the FIN7-linkedDNSMessenger toolwas involved in MuddyWater attacks as well.
- The new campaign discovered by the experts presents many similarities with previous ones conducted by the same threat actor, attackers attempted to distribute a backdoor through weaponized Word documents that execute PowerShell scripts.
- Like the previous campaigns, these samples again involve a Microsoft Word document embedded with a malicious macro that is capable of executing PowerShell (PS) scripts leading to a backdoor payload.
- Unlike previous campaigns, the samples dont directly download the maliciousscripts because they are encoded in the document itself.
@reach2ratan: A new #MuddyWater Campaign spreads Powershell-based PRB-Backdoor https://t.co/TM7Gzz679f#CyberSecurity #infosec… https://t.co/qmI1YWJ3dE
- Got millions in cryptocurrency laying around?
- Then we’ve got the Roman mansion for you!
- Rick Hilton’s Hilton & Hyland company is offering up a 17k square foot, $42-million mansion to the auction block.
- This is the first home in U.S. history to offer bidding in cryptocurrency.
- The 5-story home, dubbedThe Palazzetto, was built by famed architect and sculptor Giacomo Della Porta back in the 16th century… Porta alsocollaborated a ton with Michelangelo.
@reach2ratan: Rick Hilton is Helping Auction Off Italian Mansion for #Cryptocurrency https://t.co/TkFGlFqTyu#CyberSecurity… https://t.co/5W3sPYDw8a