data exfiltration
Coverage of data exfiltration in the Nexus archive.
- New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration
OpenAI has introduced a new Lockdown Mode for ChatGPT to prevent data exfiltration through prompt injection attacks. The feature is available to logged-in users across Free, Go, Plus, and Pro accounts, targeting individuals and organizations handling sensitive data.
- FBI warns extortion hackers are visiting US law firms to steal data
The FBI issued a public advisory warning that a hacking group is targeting US law firms through social engineering tactics to gain remote access and steal data. The attack method involves exfiltrating corporate system information, highlighting a growing cybersecurity threat.
- Microsoft Copilot Cowork Exfiltrates Files
A security flaw in Microsoft Copilot's cowork feature has been identified, allowing unauthorized exfiltration of files. The article, hosted on PromptArmor's website, highlights concerns about data security and includes a Hacker News discussion with 72 points and 11 comments.
- Trigona ransomware attacks use custom exfiltration tool to steal data
Trigona ransomware attacks are utilizing a custom command-line tool to exfiltrate data from compromised systems more efficiently. This method enhances the speed and effectiveness of data theft in recent incidents.
- 5 Places where Mature SOCs Keep MTTR Fast and Others Waste Time
The article discusses how mature Security Operations Centers (SOCs) maintain fast Mean Time to Respond (MTTR) while others struggle, emphasizing that structural issues like inadequate threat intelligence—not lack of analysts—are the root cause of slow response times. Leadership views prolonged threat dwell time as a risk to data, services, regulations, and brand reputation.