OpenAI Reveals Redis Bug Behind ChatGPT User Data Exposure Incident
OpenAI on Friday disclosed that a bug in the Redis open source library was responsible for the exposure of other users’ personal …
Databases
On-the-Run Hacker Who Allegedly Breached Federal Cop Database Arrested in Florida
Nicholas Ceraolo, who faces years in prison for allegedly accessing a U.S. federal law enforcement database and other crimes, was still at …
‘Vile’ Gang Duo Breaches Police Database, Impersonates Officers in Extortion Gambit
Two gang members are being charged for allegedly threatening to release personal information and impersonating law enforcement in an effort …
‘Nobody is Safe’: In Wild Hacking Spree, Hackers Accessed Federal Law Enforcement Database
Ceraolo was also a member of a hacking group called “ViLE,” according to the prosecutors’ press release. In a screenshot included in …
BidenCash Leaks Database with Over 2 Million Stolen Credit Cards
A database containing over 2 million debit and credit cards was released for free by carding marketplace BidenCash, in celebration of its …
Attackers increasingly using transfer.sh to host malicious code
For many years now, unsecured internet-facing Redis servers have been steadily getting co-opted by criminals to mine cryptocurrency, so the …
HeadCrab bots pinch 1,000+ Redis servers to mine coins
A sneaky botnet dubbed HeadCrab that uses bespoke malware to mine for Monero has infected at least 1,200 Redis servers in the last 18 …
Scores of Redis Servers Infested by Sophisticated Custom-Built Malware
An unknown threat actor has been quietly mining Monero cryptocurrency on open source Redis servers around the world for years, using a …
New HeadCrab Malware Hijacks 1,200 Redis Servers
Since September 2021, over a thousand vulnerable Redis servers online have been infected by a stealthy malware dubbed “HeadCrab”, …
New Threat: Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers
At least 1,200 Redis database servers worldwide have been corralled into a botnet using an “elusive and severe threat” dubbed HeadCrab …
Cisco Unified CM SQL Injection Flaw Let Attackers Execute Crafted SQL Queries
Cisco released fixes for Unified Communications Manager (CM) and Unified Communications Manager Session Management Edition to address …
Database Malware Strikes Hundreds of Vulnerable WordPress Sites
The first injection redirected users to a spammy sports website, whereas the second one boosted the authority of a spammy casino website in …
Hackers Use Text-to-SQL Attacks to Break into Your Databases
Recently, a group of researchers successfully demonstrated a new type of attack that utilizes Text-to-SQL models in order to generate …
Kinsing malware targets Kubernetes environments via misconfigured PostgreSQL
Kinsing cryptojacking operators are exploiting misconfigured and exposed PostgreSQL servers to access Kubernetes environments. Researchers …