Cybersecurity

Russian hackers exploit smart home devices for crypto mining and cyberattacks

The Russian Ministry of Internal Affairs has warned citizens that hackers are infecting smart home devices with crypto mining malware.

Officials claim cybercriminals aim to create networks of compromised devices that could also be used for DDoS attacks, surveillance, and even robbery.

To mitigate risks, the ministry advises regularly changing passwords, updating firmware, and purchasing devices from reputable manufacturers.

Crypto-related fraud is also rising in Russia, with criminals posing as brokerage employees to lure victims into fake exchanges.

Prosecutors in Yakutsk are investigating a case where a resident allegedly lost $4,600 to such a scheme. Authorities have launched a criminal case and a broader inquiry into fraudulent crypto operations.

Illegal crypto mining remains a pressing issue, particularly in regions like the North Caucasus and Siberia. Moscow has enforced seasonal bans on crypto mining until 2031, aiming to conserve electricity during peak winter months.

However, officials in Irkutsk report that while 308 MW of power was freed up, the unused capacity provided no tangible benefit to consumers.

Despite concerns, some government officials argue that mining bans are improving energy reliability. Transbaikal authorities claim no legal mining operations remain in the region and have found no evidence of illegal mining activity. Industry experts remain sceptical about the overall impact of these restrictions.

For more information on these topics, visit diplomacy.edu.

Ransomware spreads through online conversion tools

The FBI’s Denver Field Office has issued a national warning over a rising cyber threat involving fake file converter websites. These sites, posing as free tools for tasks like converting documents or media formats, are secretly distributing ransomware and malware while appearing to perform legitimate functions.

According to the FBI, users are lured by services that convert files such as ‘.doc’ to ‘.pdf’ or combine image files, but the downloaded output often contains hidden malware.

A recent case revealed that a site impersonating Convertio delivered RedLine Stealer, a dangerous strain that harvests sensitive data from browsers, crypto wallets, and applications like Telegram and Discord.

Security experts have identified multiple malicious domains involved, with active incidents reported in the US, Denver area, just weeks ago.

The FBI urges the public to avoid unknown converter sites, keep antivirus software updated, and use built-in conversion features within trusted apps.

For more information on these topics, visit diplomacy.edu.

AI powers Microsoft’s latest security upgrade

Microsoft has launched a new set of AI agents as part of its Security Copilot platform, aiming to automate key cybersecurity tasks like phishing detection, data protection, and identity management. The release includes six in-house agents and five developed with partners.

Among the tools is a phishing triage agent that can autonomously process routine alerts, freeing analysts to focus on advanced incidents.

Microsoft said its new AI-driven approach goes beyond traditional security platforms, using generative AI to prioritise threats, correlate data, and even recommend or execute responses.

The rollout also brings new capabilities to Microsoft Defender, Entra, and Purview, enhancing organisations’ ability to manage and secure AI systems.

While analysts welcome the move as a step forward in proactive cybersecurity, some warn that full reliance on one platform carries strategic risks like vendor lock-in and reduced flexibility.

Experts suggest a balanced approach that combines Microsoft’s core capabilities with specialised solutions for areas such as threat intelligence and cloud protection, helping organisations stay agile in a fast-evolving threat landscape.

For more information on these topics, visit diplomacy.edu.

Cerebras IPO faces further delays

Cerebras Systems’ plans for a public listing remain in limbo as a national security review by the US government continues to delay the AI chipmaker’s IPO.

The review, conducted by the Committee on Foreign Investment in the United States (CFIUS), is assessing a $335 million investment from Abu Dhabi-based AI firm G42, which has faced scrutiny over its past ties to China.

While executives had hoped for a smoother process under President Trump, delays in filling key political positions have further complicated approval.

Without clarity on G42’s stake, investors remain cautious, making it difficult for Cerebras to move forward. The situation reflects a broader reality for Wall Street, as expectations of a more deal-friendly environment under Trump have yet to materialise.

Analysts suggest that instead of rolling back Biden-era policies, the administration is likely to maintain or even expand scrutiny on foreign investments, particularly those linked to China.

Instead of a setback, Cerebras remains optimistic that the deal will be approved, with plans to proceed with its IPO once clearance is granted.

The company, valued at $8 billion last year, has seen its worth nearly double since then. Meanwhile, G42 has distanced itself from Huawei and secured a national security agreement with the US in an effort to gain regulatory approval.

For more information on these topics, visit diplomacy.edu.

Canada warns of foreign election interference

Canada’s intelligence agency has warned that China and India are highly likely to interfere in the country’s general election on 28 April, with Russia and Pakistan also having the potential to do so.

The Canadian Security Intelligence Service (CSIS) stated that while previous interference attempts in the 2019 and 2021 elections did not alter the results, the country had been slow to respond at the time. Both China and India have denied previous allegations of meddling in Canada’s internal affairs.

Vanessa Lloyd, CSIS’s deputy director of operations, said hostile states are increasingly using AI to influence elections, with China being particularly likely to exploit such tools.

The warning comes amid tense diplomatic relations between Canada and Beijing, following China’s recent tariffs on $2.6 billion worth of Canadian agricultural products and Ottawa’s strong condemnation of China’s execution of four Canadian citizens on drug charges.

India has also been under scrutiny, with Canada expelling six Indian diplomats last year over allegations of involvement in a plot against Sikh separatists.

Lloyd stated that India has both the intent and capability to interfere in Canadian politics and communities, though the Indian diplomatic mission in Ottawa has yet to comment.

She added that while it is difficult to directly link foreign interference with election outcomes, such activities undermine public trust in Canada’s democratic institutions.

For more information on these topics, visit diplomacy.edu.

India’s Gen AI market to drive data centre growth

India’s Generative AI sector is poised for rapid growth over the next five years, driving an increased demand for data centres, according to a report by ANAROCK.

The market size of Gen AI in India is projected to rise from USD 1.1 billion in 2025 to USD 6.4 billion by 2030, expanding at a compound annual growth rate of 42 per cent.

The surge will require advanced infrastructure, with data centres playing a key role in managing computing power, storage, and data processing needs.

As AI-driven applications become more sophisticated, data centre operators are adapting their strategies to accommodate rising infrastructure demands.

The push for real-time AI applications will also drive the need for edge data centres, particularly in Tier-II cities like Jaipur, Ahmedabad, and Visakhapatnam, bringing computing closer to users and improving efficiency.

With the expansion of India’s data centre industry, there is a growing focus on sustainability and energy efficiency. Operators are increasingly relying on renewable energy sources and adopting energy-efficient solutions to meet rising power demands while aligning with India’s sustainability goals.

Over the past decade, the sector has attracted over USD 6.5 billion in investments, benefiting from infrastructure status that facilitates easier project financing.

With continued interest from global investors, India’s data centre industry is set for exponential growth, playing a crucial role in the country’s digital transformation.

For more information on these topics, visit diplomacy.edu.

Ukrzaliznytsia shifts to offline ticket sales after IT system failure

Ukraine’s state-owned railway company, Ukrzaliznytsia, has been hit by a large-scale cyberattack, affecting its online systems.

While train services remain operational without delays, the company has been working to restore its IT infrastructure. Passengers were advised to buy tickets offline on Monday as backups were recovered.

The cyberattack, described by Ukrzaliznytsia as ‘systemic, non-trivial and multi-level,’ was first reported on Sunday.

The railway has become a critical part of Ukraine’s transport network since the Russian invasion in 2022, with airspace closed and trains serving as the primary mode of domestic and international travel. Last year, it transported 20 million passengers and 148 million tonnes of freight.

Efforts to fully restore online systems are ongoing as authorities investigate the incident.

Cyberattacks targeting Ukraine’s infrastructure have increased since the start of the war, with railways playing a crucial role in both civilian and military logistics. Officials have not yet attributed responsibility for the attack.

For more information on these topics, visit diplomacy.edu.

Hackers use fake Semrush ads to steal Google accounts

Cybercriminals are using fake adverts for popular SEO platform Semrush to trick users into giving up access to their Google accounts, researchers have warned.

The malvertising campaign features ads that link to a bogus Semrush login page, which only allows users to sign in via Google, a tactic designed to steal high-value credentials.

According to Malwarebytes, Semrush accounts are often linked to critical Google services such as Analytics and Search Console.

These tools store confidential business insights, which threat actors could exploit for strategic and financial gain. The scammers may also access names, phone numbers, business details, and partial card information through compromised Semrush accounts.

By impersonating Semrush support, attackers could deceive users into revealing full card details under the pretence of payment or billing updates. However, this may open the door to wider fraud, such as redirecting funds from vendors or business partners.

With Semrush serving over 117,000 customers, including a significant share of Fortune 500 firms, the attack underscores the growing risks of malvertising on platforms like Google.

Security experts are urging businesses to tighten account access controls and remain cautious when engaging with search ads, even from seemingly reputable brands.

For more information on these topics, visit diplomacy.edu.

FuriosaAI rejects $800m acquisition offer from Meta

FuriosaAI, a South Korean startup specialising in AI chips, has reportedly turned down an $800 million acquisition offer from Meta.

Instead of selling, FuriosaAI plans to continue developing its AI chips. Disagreements over post-acquisition business strategy and organisational structure were reportedly the cause of the breakdown in negotiations, rather than issues over price.

Meta, which has been trying to reduce its reliance on Nvidia for chips specialised in training large language models (LLMs), unveiled its custom AI chips last year. The company also announced plans to invest up to $65 billion this year to support its AI initiatives.

FuriosaAI, founded in 2017 by June Paik, who previously worked at Samsung Electronics and AMD, has developed two AI chips—Warboy and Renegade (RNGD).

The startup is also in talks to raise approximately $48 million and is planning to launch the RNGD chips later this year, with LG AI Research already testing them for use in its AI infrastructure.

FuriosaAI’s decision to focus on expanding its chip production signals its confidence in competing with giants like Nvidia and AMD in the rapidly growing AI hardware market.

For more information on these topics, visit diplomacy.edu.

How scammers are using fake Google Maps listings to target customers

Google has removed 10,000 fake business listings from Google Maps and filed a lawsuit against a scam network accused of creating and selling fraudulent profiles.

The legal action was prompted by a complaint from a Texas locksmith who discovered someone had impersonated their business on the platform. That led Google to uncover a broader scheme involving fake listings for profit.

The company warns that scammers are using increasingly advanced methods to trick users. These fake listings may appear legitimate, leading customers to contact or visit them.

Victims are sometimes overcharged for services or misled into paying upfront for services that are never delivered. Scammers also use fake reviews and manipulated Q&As to make the listings seem trustworthy.

In 2023 alone, Google blocked or removed 12 million fake business profiles, an increase of one million from the previous year.

The company has also been cracking down on businesses using fake engagement tactics, including artificial reviews, to inflate their reputations falsely.

Internationally, Google has begun implementing stricter rules in response to growing regulatory pressure, including in the UK, where it restricts deceptive businesses engaged in review manipulation.

For more information on these topics, visit diplomacy.edu.

Diplo chatbot can make mistakes. Consider checking important information.