Each week I publish interesting articles and ways to improve your understanding of cybersecurity.
Projects
- TryHackMe – Networking Concepts – In Progress
Videos
Articles
- Nearly 12,000 API keys and passwords found in AI training dataset – Close to 12,000 valid secrets that include API keys and passwords have been found in the Common Crawl dataset used for training multiple artificial intelligence models.
- The Rise of QR Phishing: How Scammers Exploit QR Codes and How to Stay Safe – QR phishing is on the rise, tricking users into scanning malicious QR codes. Learn how cybercriminals exploit QR codes and how to protect yourself.
- Meta fired 20 employees for leaking information, more firings expected – Meta fired about 20 employees because they had leaked “confidential information outside the company,” with more firings expected.
- Two Venezuelans Arrested in US for ATM Jackpotting – Several Venezuelans have been arrested and charged in the US in recent months for their role in ATM jackpotting schemes.
- Nearly 10% of employee gen AI prompts include sensitive data – Enterprise users are leaking sensitive corporate data through use of unauthorized and authorized generative AI apps at alarming rates. Plugging the leaks is vital to reduce risk exposure.
- Cybercriminals arrested for stealing hundreds of concert tickets through StubHub exploit – If found guilty, the thieves could face up to 15 years in prison.
- ChatGPT Operator Prompt Injection Exploit Leaking Private Data – OpenAI’s ChatGPT Operator, a cutting-edge research preview tool designed for ChatGPT Pro users, has recently come under scrutiny for vulnerabilities that could expose sensitive personal data through prompt injection exploits.
- Malicious Chrome extensions can spoof password managers in new attack – A newly devised “polymorphic” attack allows malicious Chrome extensions to morph into other browser extensions, including password managers, crypto wallets, and banking apps, to steal sensitive information.