Cado Security Labs has pointed out that cybercriminals are using AI to create fake websites and apps through which they recruit victims from the cryptocurrency sector.

Through these fake meeting apps, hackers spread malware to steal personal data, as well as access credentials to “websites, apps and cryptocurrency wallets.”

Scammers create malicious pages and fake social media accounts that are difficult to detect “before contacting potential victims to encourage them to download a meeting app,” according to Tara Gould, Cado’s threat research leader.

An example is the “Meeten” app, although it operates under the name “Meetio” and “regularly changes its name. In the past, it has used names such as Clusee.com, Cuesee, Meeten.gg, Meeten.us, and Meetone.gg.”

Once downloaded, the information stealer called Realst contained in the app “searches for sensitive items such as Telegram login credentials, bank card details, and cryptocurrency wallet information to send to the attackers.”

In addition, it searches for browser cookies and auto-filled credentials from applications such as Google Chrome and Microsoft Edge. In this way, the credentials of the Ledger, Trezor, and Binance wallets are stolen.

“The use of AI allows threat actors to quickly create realistic content for websites, which adds legitimacy to their scams and makes it harder to detect suspicious websites,” the researchers said, highlighting that this attack has been operating for about four months, with versions for macOS and Windows.

M.Pino

Source: cointelegraph

(Reference image source: Christin Hume on Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on X/Twitter and Instagram

La entrada Cryptocurrency theft lurks behind fake meeting apps apareció primero en Bitfinance.

Privacy and security when browsing the Internet are a priority for Google Chrome, so it will soon implement the use of biometric authentication systems in relation to entering passwords on websites.

The update will change the way users use the application. “Google Chrome will force the use of your face or fingerprint when filling in a password.”

When entering a website on the Internet, it will no longer be enough to use Google’s password manager. Once the change is implemented, when entering a site that requires a password, the data will not be filled in automatically. The page will request the fingerprint or face scan to complete the process.

The user will use the method that is enabled on their device. But in case you do not want to force the authentication method, you can leave it as is from the Google Chrome settings.

Currently, the feature is in testing period in Google Chrome Canary, which is an experimental version that the company regularly tests.

M.Pino

Source: hipertextual

(Reference image source: Firmbee.com in Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada New Google Chrome update will include biometric authentication systems apareció primero en Bitfinance.

A vulnerability in a WordPress plugin put millions of websites built on WordPress at risk, as it allows a malicious actor to log in as an administrator and take control of the site with full privileges.

Elementor Pro is a plugin that allows users to create professional-looking web pages easily, without the need for them to know how to code. It is installed on more than eleven million pages.

Researchers at NinTechNet, a company that designed a firewall web application for WordPress, have identified a vulnerability in Elementor Pro, which was rated “high severity”, as reported on their official blog.

This bug is found in the premium version and its exploitation requires WooCommerce to be enabled on the website, thus giving access to the registration page, where a malicious actor could create an account with administrator privileges.

Jerome Bruandet of NinTechNet discovered the vulnerability on March 18, in version 3.11.6 (and earlier) of Elementor Pro. Patchstack researchers have confirmed that the vulnerability has been actively exploited, and therefore it is recommended to install when before the correction that Elementor (3.11.7) has already prepared, available since March 22.

K. Tovar

Source: Notiamerica

(Reference image source: Fikret Tozak, Unsplash)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram

La entrada WordPress vulnerability puts millions of websites at risk apareció primero en Bitfinance.

Google removed more than 6 billion URLs leading to pirated content from its search results following requests from individuals or entities that did own the copyright.

In its latest report, the technology company ensures that it has removed 6,012,481,649 URLs hosted on 4,045,445 unique domains from the search results, as detailed by the company in its report.

These figures are based on requests from 327,510 copyright owners, who may be individuals or entities, and 333,880 reporting organizations, who acted on behalf of copyright owners.

The company clarifies that not all requests conclude in the removal of the URL from the Search Engine results. Thus, a negative review of a business, criticism of a politician for his performance as a member of the Government or the inclusion of a certain film in a list such as “The worst of XX year” are examples of requests that do not meet the requirements.

Examples shared also include requests that impersonate a person or organization that owns the copyright, for which Google does not remove the URL “due to fraudulent copyright claims.”

Click the link to subscribe for free to our news and media group on Telegram: https://t.me/G_ELSUMARIO_News

Source: dpa

La entrada Google removes millions of URLs for leading to pirated content apareció primero en Bitfinance.