IN CASE YOU MISSED IT!

Cybersecurity, infosec, ai, malware & much more…

Chatbots News Monday, June 18

Xen Project patches Intel’s Lazy FPU flaw

  • The Xen Project has revealed that its hypervisor is susceptible to the Lazy FPU flaw found in Intels x86 CPUs.
  • An advisory says Systems running all versions of Xen are affected, provided they employ Intel Core based processors (from at least Nehalem onwards).
  • Xen said the impact of the flow is as follows: – – An attacker can read x87/MMX/SSE/AVX/AVX-512 register state belonging to another vCPU previously scheduled on the same processor.
  • The fix can be found as either a conventional patch or a livepatch thats applicable while Xen runs.
  • The Registers virtualization desk has asked VMware if its hypervisors are also affected by Lazy FPU and will update this story if the company has something to say.

Tags:

Xen Project patches Intel’s Lazy FPU flaw

A new MuddyWater Campaign spreads Powershell-based PRB-Backdoor

  • Security experts at Trend Micro have spotted a newattack relying on weaponized Word documents and PowerShell scripts thatappears related to the MuddyWater cyber-espionage campaign.
  • The attacks have been mistakenly associated with the FIN7 group, when Palo Alto discovered the first campaign reported that a C&C server delivering the FIN7-linkedDNSMessenger toolwas involved in MuddyWater attacks as well.
  • The new campaign discovered by the experts presents many similarities with previous ones conducted by the same threat actor, attackers attempted to distribute a backdoor through weaponized Word documents that execute PowerShell scripts.
  • Like the previous campaigns, these samples again involve a Microsoft Word document embedded with a malicious macro that is capable of executing PowerShell (PS) scripts leading to a backdoor payload.
  • Unlike previous campaigns, the samples dont directly download the maliciousscripts because they are encoded in the document itself.

Tags:

A new MuddyWater Campaign spreads Powershell-based PRB-Backdoor

Rick Hilton is Helping Auction Off Italian Mansion for Cryptocurrency

  • Got millions in cryptocurrency laying around?
  • Then we’ve got the Roman mansion for you!
  • Rick Hilton’s Hilton & Hyland company is offering up a 17k square foot, $42-million mansion to the auction block.
  • This is the first home in U.S. history to offer bidding in cryptocurrency.
  • The 5-story home, dubbedThe Palazzetto, was built by famed architect and sculptor Giacomo Della Porta back in the 16th century… Porta alsocollaborated a ton with Michelangelo.

Tags:

Rick Hilton is Helping Auction Off Italian Mansion for Cryptocurrency