 Hackers reportedly stole $93M from crypto companies in April 2023. The cryptocurrency industry remains one of the most targeted by hackers. More: - While the figure is a significant drop compared to the same period in 2022 ($200M), April's statistics are considerably higher than the $35M stolen from crypto companies in February of this year.
- Some of the largest attacks were:
- the Singapore-based exchange Bitrue attack, in which the company lost almost $23M;
- the Gdac attack, where hackers stole $13M;
- and the Merlin DEX $2M breach, a case where the company's developers stole funds.
- Around 41 companies and organizations were hacked in April.
| |
The head of the FBI, Christopher Wray, has stated that China has 50 hackers for every FBI cyber agent and that it has a bigger hacking program than any other country in the world. Wray made the remarks in front of a House of Representatives subcommittee. More: - Christopher Wray stated that even if the FBI strictly focused on China, the latter would outnumber its cybersecurity experts by 50 to 1.
- Wray made the statements in an effort to convince legislators that the Bureau needs a larger cybersecurity budget to thwart incoming threats.
- He added that China's hacking program is larger than all other nations combined and that cybercrime plays a crucial role in its aim to push propaganda and surpass the U.S. as a global superpower.
- Wray said that the risks that the U.S. faces from China, Iran, North Korea, and other threat actors justify its request for 192 extra cyber positions and $63M in funding.
| |
 A message from VANTA Swamped with spreadsheets as you work to stay compliant with privacy and security regulations? Then you need Vanta, the market-leading automated compliance platform. Trusted by 5,000+ global customers, Vanta helps you quickly and easily get compliant, manage risk, and show off your security — so your business can focus on building and selling. Vanta’s platform: -
Automates up to 90% of compliance for SOC 2, ISO 27001, GDPR, HIPAA, and more, saving you hundreds of hours of manual work -
Gives you one place to centralize and scale your security program and build trust with customers and partners -
Helps your business scale and thrive while reducing the need for countless spreadsheets and endless email threads Even better? Vanta customers report saving up to 85% of compliance costs. And now, you can take a self-guided tour of Vanta’s product to see how it all works. See the Tour
| |
Global cyberattacks rose by 7% in Q1 2023 compared to Q1 2022. Companies faced an average of 1,248 cyberattacks per week. More: - The education and research sector experienced the highest number of attacks, with an average of 2,507 per organization per week, a 15% increase compared to Q1 2022.
- The increase could be credited to the use of ChatGPT for code generation that can help less-skilled threat actors effortlessly launch cyberattacks, Trojanizing the 3CX Desktop app for a supply chain attack, and leveraging the critical unauthorized RCE Vulnerability in the Microsoft Message Queuing service.
- Geographically, the Asia-Pacific region experienced the highest YoY increase in weekly attacks, with an average of 1,835 per company, which is 16% more than in 2022.
- North America followed with a 9% YoY increase, resulting in 950 average weekly attacks per organization.
| |
CISA has warned of several security flaws in DNA sequencing medical devices. The security issues could enable hackers to spy on network traffic and change genomic data results. More: - The issues impact the Universal Copy Service software in the following instruments:
- Illumina MiSeqDx,
- NextSeq 550Dx,
- iScan, iSeq 100,
- MiniSeq, MiSeq,
- NextSeq 500,
- NextSeq 550,
- NextSeq 1000/2000,
- and NovaSeq 6000.
- The severe security flaw that was tracked is CVE-2023-1968. The flaw, with a CVSS score of 10.0, could allow hackers to spy on network traffic and deploy remote commands.
- The second flaw that was found is CVE-2023-1966. The flaw, with a CVSS score of 7.5, could allow hackers to manipulate login privileges.
- In what is likely the worst-case scenario, the FDA stated that hackers could use this flaw to manipulate genomic data results in the instruments.
| |
 A message from TRUERA LLM Testing and Monitoring – Join the Hands-On Workshop How can you ensure that your large language model is honest, harmless, and helpful? Join TruEra on May 11th and 18th as their President and Chief Scientist, Anupam Datta, provides a hands-on overview of how to analyze and improve the performance of your LLMs. During the two 60-minute online sessions, he will cover the following: - Quick introduction to LLMs - what are they and their history?
- Risks and challenges of LLMs: is your LLM honest, harmless, and helpful?
- Defining feedback functions to model LLM quality and performance
- How should you test and monitor LLMs?
- Live walk-throughs of how to identify, diagnose, and debug model issues in development and production
- Q&A with Professor Datta
Dates: 2-session series on May 11th and 18th Where: Virtual Event - Join from Anywhere Who should attend: Data scientists, machine learning engineers, MLOps managers, data analysts, statisticians, data and analytics managers Register for Free
| |
Apple has failed to install a Rapid Security Response patch on all targeted iPhones, leaving users exposed to recently tracked security flaws. The patch was released for iOS 16.4.1 and macOS 13.3.1 More: - Rapid Security Response patches are security patches that are used to mitigate urgent security issues between OS updates.
- If the users decline to install Rapid Security Responses when offered, their device will receive the security patches as part of a future software upgrade.
- According to user reports, the RSR update delivered today for iPhones also fails to install on some devices with "Unable to Verify Security Response" errors.
- Apple has not specified what exact flaw the RSR patches address.
| |
Zodia Custody has raised a $36M Series A funding round to offer crypto custody for institutional investors. This is the company's first major funding round since being founded in 2020. More: - Zodia Custody offers institutional investors the chance to have their cryptocurrency safely stored and avoid regulatory risks.
- Zodia offers custody services for:
- Bitcoin,
- Ether,
- Bitcoin Cash,
- Litecoin,
- Chainlink,
- Uniswap,
- Wrapped Bitcoin,
- and USD Coin.
- SBI Holdings and SC Holdings were the two lead investors.
- Zodia aims to use this funding to expand its market reach.
- The company is based in London, U.K.
| |
Quick Hits: - The company behind these surgical robots is planning to list on Nasdaq. Last day to fund your investment is on 5/10.*
- A Vietnamese threat actor has been tracked as responsible for deploying a campaign that infected over 500,000 devices worldwide.
- Russia-backed hacker group APT28 is targeting the Ukrainian government with a false Windows Update email campaign that deploys info-stealing scripts.
- YouTube prevented a crypto scam by not allowing hackers to post videos on behalf of a YouTube channel that had been hacked.
- Demo Divvy, get an Ember heated mug. Hot coffee and quick and easy expense management — get both when you demo Divvy.*
*This is sponsored content.
| |
Upcoming events at Inside: *This is a sponsored listing.
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
| |
Join us on May 11th and 18th for a hands-on overview of how to analyze and improve the performance of your LLMs. | |
