China-backed Advanced Persistent Threat (APT) group PlushDaemon has been infiltrating legitimate update channels on a popular South Korean VPN, according to cybersecurity firm ESET. The group has replaced genuine installers with trojan versions that plant SlowStepper, a sophisticated backdoor capable of extensive surveillance and data collection, into the software. The attack avoided widespread damage due to ESET alerting the VPN operator. Experts believe PlushDaemon has been active since 2019.
GhostGPT offers AI coding, phishing assistance for cybercriminals
GhostGPT, a generative AI (GenAI), is being utilised by cybercriminals to write malware code and phishing emails, according to Abnormal Security. Likely a version of
