SecurityWeek
Critical Vulnerability Found in Ray AI Framework
A critical issue in open source AI framework Ray could provide attackers with operating system access to all nodes.
Infosecurity News
Cybercriminals Hesitant About Using Generative AI
An analysis of dark web forums revealed many threat actors are skeptical about using tools like ChatGPT to launch attacks
The Record
AI systems ‘subject to new types of vulnerabilities,’ British and US cyber agencies warn
British and U.S. cybersecurity authorities published guidance on Monday about how to develop artificial intelligence systems in a way that will minimize the risks they face from mischief-makers through to state-sponsored hackers.
Security Affairs
Security Affairs newsletter Round 447 by Pierluigi Paganini
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Cyber Security News
Bug Hunter GPT - AI Assistant that Replies for Hacking Questions
A 23-year-old hacker and CS student, Paolo Arnolfo (@sw33tLie) recently introduced "Bug Hunter GPT," an AI assistant.
CyberNews
Exclusive-OpenAI researchers warned board of AI breakthrough ahead of CEO ouster -sources
Ahead of OpenAI CEO Sam Altman’s firing, staff researchers sent the Board a letter warning of a powerful artificial intelligence discovery that could threaten humanity.
SecurityWeek
Sam Altman is Back as OpenAI CEO Just Days After Being Removed, Along With a New Board
OpenAI reached an agreement for Sam Altman to return to OpenAI as CEO with a new initial board of directors, after he was fired a week prior.
The Hacker News
AI Solutions Are the New Shadow IT
AI Solutions Are the New Shadow IT - Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security Risks
CyberNews
ChatGPT rolls out voice chat feature for all users
Free ChatGPT users can now chat with OpenAI’s chatbot in voice messages.
CyberNews
OpenAI reinstates Sam Altman as CEO
Sam Altman to return as CEO of OpenAI.
CyberNews
OpenAI board, Altman in talks for return of former CEO
Sam Altman and OpenAI's board have opened up discussions to bring back the former CEO and founder of the AI startup, while investors seek legal action.
Ars Technica
95% of OpenAI employees have threatened to quit in standoff with board
OpenAI's future hangs in the balance as staff says they'll join former CEO at Microsoft.
SecurityWeek
Insider Q&A: Pentagon AI Chief on Network-Centric Warfare, Generative AI Challenges
Interview with Craig Martell, Chief Digital and AI Officer (CDAO) for the U.S. Department of Defense, about AI use in the military.
CyberNews
Salesforce and other rivals want to recruit unhappy OpenAI researchers
The recruitment drive has begun. Marc Benioff, CEO of software company Salesforce, has said that he will match the salary of any researcher who resigns from OpenAI.
Infosecurity News
Infostealer Lumma Evolves With New Anti-Sandbox Method
Outpost24 explained the technique relies on trigonometry to discern genuine human behavior
CyberNews
Hundreds of OpenAI staff threaten to resign and join Altman at Microsoft
After OpenAI's board confirmed that Sam Altman would not return as the firm’s CEO, most of its employees said they would resign en masse if the decision wasn't reversed.
CyberNews
Best botnet ad? An attack on OpenAI
Anonymous Sudan attacks on OpenAI and Cloudlfare are meant to show the groups' capabilities.
SecurityWeek
Microsoft Hires Sam Altman and OpenAI’s New CEO Vows to Investigate His Firing
Microsoft hired ex-Open AI chief Sam Altman and another architect of OpenAI for a new venture after their sudden departures.
The Hacker News
LummaC2 Malware Deploys New Trigonometry-Based Anti-Sandbox Technique
New LummaC2 malware uses trigonometry-based tactic to differentiate between users and security systems, evading sandboxes and security analyses.
CyberNews
Tech whiz kid Sam Altman is out of OpenAI for good: what happened?
Sam Altman, the ousted CEO of ChatGPT creator OpenAI, will definitely not return to the company he co-founded. It’s time to ask what happened.
CyberNews
Microsoft hires Sam Altman as OpenAI announces his replacement
OpenAI has appointed ex-Twitch boss Emmett Shear to lead the startup, replacing Sam Altman who will join the company's top backer Microsoft to lead a new advanced AI research team, the CEO of the software giant said.
Cyber Security News
Weekly Cyber Security News Roundup for the Week of November 13th to 18th
Welcome to the Cyber Security News Recap, a weekly publication by Cyber Writes. Our aim is to bring you up-to-date information on the latest developments in the field of cybersecurity.
SecurityWeek
ChatGPT-Maker OpenAI Fires CEO Sam Altman, the Face of the AI Boom, for Lack of Candor With Company
Open AI fired CEO Sam Altman, Mira Murati, OpenAI’s chief technology officer, will take over as interim CEO effective immediately.
CyberNews
OpenAI CEO Sam Altman asked to step down
OpenAI has announced that its CEO Sam Altman is leaving the company after board members determined he was no longer fit for the role.
Ars Technica
“Hallucinating” AI models help coin Cambridge Dictionary’s word of the year
Cambridge: "When an artificial intelligence hallucinates, it produces false information."
SecurityWeek
Over a Dozen Exploitable Vulnerabilities Found in AI/ML Tools
Bug hunters uncover over a dozen exploitable vulnerabilities in tools used to build chatbots and other types of AI/ML models.
Bleeping Computer
How DDoS attacks are taking down even the largest tech companies
DDoS attacks are increasingly taking down even the largest tech companies. Learn more Specops Software on these types of attacks and how you can protect your devices from being recruited into botnets.
Cyber Security News
ChatGPT for Malware Analysis: Enhancing GPT’s Ability to Guide Malware Analyst
GPT excels in verbal thinking, skillfully choosing precise words for optimal responses. Understanding this key property is crucial, as much of its subsequent behavior stems from this ability.
Ars Technica
From toy to tool: DALL-E 3 is a wake-up call for visual artists—and the rest of us
AI image synthesis is getting more capable at executing ideas, and it's not slowing down.
CyberNews
Samsung notifies UK store customers of data breach
Samsung Electronics, a South Korean multinational tech corporation, has notified some of its customers of a data breach that exposed their personal data to a hacker.
Ars Technica
Bing Chat is now “Microsoft Copilot” in potentially confusing rebranding move
Microsoft: "Soon there will be a Copilot for everyone and for everything you do."
SecurityWeek
CISA Outlines AI-Related Cybersecurity Efforts
CISA details its efforts to promote the use of AI in cybersecurity and guide critical infrastructure in adopting AI.
SecurityWeek
Google Suing Cybercriminals Who Delivered Malware via Fake Bard Downloads
Google files a lawsuit against cybercriminals who delivered account-hijacking malware by offering fake Bard AI downloads.
The Hacker News
Vietnamese Hackers Using New Delphi-Powered Malware to Target Indian Marketers
Vietnamese hackers behind Ducktail malware launch a new campaign targeting Indian marketing pros.
Trend Micro
A Closer Look at ChatGPT's Role in Automated Malware Creation
This blog entry explores the effectiveness of ChatGPT's safety measures, the potential for AI technologies to be misused by criminal actors, and the limitations of current AI models.
Ars Technica
Nvidia introduces the H200, an AI-crunching monster GPU that may speed up ChatGPT
The H200 will likely power the next generation of AI chatbots and art generators.
Cyber Security News
Burp Suite 2023.10.3.4 Released for Professional & Community - What's New!
developers at PortSwigger released a new version of Burp Suite for ethical hackers and security professionals, which is Burp Suite 2023.10.3.4
Bleeping Computer
Cloudflare website downed by DDoS attack claimed by Anonymous Sudan
Cloudflare is investigating an ongoing outage causing 'We're sorry" Google errors to be shown on the company's website.
Cyber Security News
ChatGPT-Powered Malware Attacking Cloud Platforms to Steal Login Credentials
Threat actors can ChatGPT to generate convincing phishing emails or deceptive content that encourages users to download malware.
Infosecurity News
OpenAI Reveals ChatGPT Is Being DDoS-ed
OpenAI has admitted DDoS attacks are the cause of intermittent ChatGPT outages since November 8
Bleeping Computer
OpenAI confirms DDoS attacks behind ongoing ChatGPT outages
During the last 24 hours, OpenAI has been addressing what it describes as "periodic outages" linked to DDoS attacks affecting its API and ChatGPT services.
The Record
Biden AI order could lead to reforms in how federal agencies work with data brokers
A little-noticed provision of the Biden administration’s recently issued executive order on artificial intelligence could lead to important reforms of the federal government’s data collection practices, experts say.
Infosecurity News
Predator AI ChatGPT Integration Poses Risk to Cloud Services
This integration reduces reliance on OpenAI’s API while streamlining the tool’s functionality
Bleeping Computer
ChatGPT down after major outage impacting OpenAI systems
OpenAI's AI-powered ChatGPT large language model-based chatbot is down because of a major ongoing outage that also took down the company's Application Programming Interface (API).
Bleeping Computer
ChatGPT back online after major OpenAI systems outage
OpenAI's AI-powered ChatGPT large language model-based chatbot is down because of a major ongoing outage that also took down the company's Application Programming Interface (API).
The Hacker News
Guide: How vCISOs, MSPs and MSSPs Can Keep their Customers Safe from Gen AI Risks
Free Guide: "It's a Generative AI World" - Your essential manual to safeguarding against Gen AI risks.
Bleeping Computer
OpenAI confirms it's not killing off ChatGPT plugins for now
During its inaugural developer conference, OpenAI unveiled GPTs, short for Generative Pre-trained Transformers. These custom versions of ChatGPT are designed to be shaped by and for individual users, whether for recreational or professional use, and can be shared with others.
The Hacker News
Offensive and Defensive AI: Let’s Chat(GPT) About It
Get the full story on the dangers of the rapidly growing consumer application, ChatGPT, and learn how to resist cyber crime.
Ars Technica
OpenAI introduces GPT-4 Turbo: Larger memory, lower cost, new knowledge
Novel-sized context window, DALL-E 3 API, more announced on OpenAI DevDay 2023.
DarkReading
Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams
With AI and publicly available data, cybercriminals have the resources they need to fake a real-life kidnapping and make you believe it.
Ars Technica
OpenAI introduces custom AI assistants called “GPTs” that play different roles
Users can build and share custom-defined roles—from math mentor to sticker designer.
Ars Technica
Elon Musk’s new AI model doesn’t shy from questions about cocaine and orgies
xAI positions sarcastic AI assistant to counterbalance buttoned-up ChatGPT.
The Hacker News
Predictive AI in Cybersecurity: Outcomes Demonstrate All AI is Not Created Equally
Discover how predictive AI is shaping the future of cybersecurity. Learn how BlackBerry's Cylance AI is outperforming the competition in malware.
Infosecurity News
Forrester: GenAI Will Lead to Breaches and Privacy Fines in 2024
Analyst warns that risks of using the technology will become apparent
Computerworld
Q&A: Cisco CIO sees AI embedded in every product and process
After little more than a year on the job, Cisco CIO Fletcher Previn can already see that AI will create productivity and efficiency gains well worth the money spent on developing domain-specific models to address internal and external business plans.
Ars Technica
“Catastrophic” AI harms among warnings in declaration signed by 28 nations
"Bletchley Declaration" sums up first day of UK's international AI Safety Summit.
SecurityWeek
Countries at a UK Summit Pledge to Tackle AI’s Potentially ‘Catastrophic’ Risks
The AI Safety Summit focused on cutting-edge “frontier” AI that some scientists warn could pose a risk to humanity’s very existence.
Bleeping Computer
LayerX Enterprise Browser Security Extension – Secure the Modern Workspace
LayerX has developed a secure enterprise browser extension that delivers comprehensive visibility, monitoring, and granular policy enforcement on every event within a browsing session. Learn more about this cybersecurity platform from LayerxSecurity.
The Hacker News
Hands on Review: LayerX's Enterprise Browser Security Extension
Protect your organization's most critical interface—The Browser! LayerX's secure extension offers comprehensive visibility and policy enforcement, de
SecurityWeek
Cutting-Edge AI Raises Fears About Risks to Humanity. Are Tech and Political Leaders Doing Enough?
Many people are raising the alarm about AI’s as-yet-unknown dangers and calling for safeguards to protect people from its existential threats.
Bleeping Computer
Windows 11 23H2 - New features in the Windows 11 2023 Update
This article will explore Windows 11 23H2 features, from dynamic lighting to Windows Copilot upgrades.
Computerworld
Biden lays down the law on AI
The White House today issued a long-awaited executive order that hammers out clear rules and oversight measures to ensure artificial intelligence is kept in check, while also providing paths for it to grow.
Ars Technica
Biden issues sweeping executive order that touches AI risk, deepfakes, privacy
Order details US admin's approach to AI safety, media authenticity, job loss, and more.
Infosecurity News
Report Links ChatGPT to 1,265% Rise in Phishing Emails
The SlashNext report also found a noteworthy 967% increase in credential phishing attacks
Cyber Security News
NGINX ingress Security Flaw Let Attackers Kubernetes API Server Credentials
3 vulnerabilities have been discovered in NGINX ingress controllers which were associated with arbitrary command RCE injection.
SecurityWeek
Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack
Researchers document the Wiki-Slack attack, a new technique that uses modified Wikipedia pages to target end users on Slack.
SecurityWeek
Biden Wants to Move Fast on AI Safeguards and Will Sign an Executive Order to Address His Concerns
Joe Biden's executive order on artificial intelligence (AI) will require industry to develop safety and security standards, add consumer protections and give federal agencies an extensive to-do list.
Ars Technica
People are speaking with ChatGPT for hours, bringing 2013’s Her closer to reality
Long mobile conversations with the AI assistant using AirPods echo the sci-fi film.
Infosecurity News
Generative AI A Boon for Organizations Despite the Risk
Experts highlighted the ways generative AI tools can help security teams, and how to mitigate the risks they pose
SecurityWeek
UN Chief Appoints 39-Member Panel to Advise on International Governance of Artificial Intelligence
U.N. Secretary-General assembled a 39-member advisory panel to report on governance of artificial intelligence and its risks, challenges and opportunities
Infosecurity News
UK IT Pros Worried About C-Suite Training Gap Ahead of AI Safety Summi
93% of professionals express concerns about their company’s C-suite ambitions for generative AI
CSO
UK Prime Minister announces world’s first AI Safety Institute
AI Safety Institute will examine, evaluate, and test new types of artificial intelligence
Computerworld
White House to issue AI rules for federal employees
President Biden is expected to announce new rules requiring government agencies to more fully assess AI tools to ensure they're safe and don't expose sensitive information. The government is also expected to loosen immigration policies for tech-savvy workers.
CSO
Businesses face “silent infiltration” of generative AI as use spirals out of control
Business leaders appear to have lost control over the deployment of generative AI despite just 28% of organizations expressly permitting its use.
Ars Technica
US surprises Nvidia by speeding up new AI chip export ban
Nvidia tried to end-run restrictions with new designs, but US govt said not so fast.
SecurityWeek
The $64k Question: How Does AI Phishing Stack Up Against Human Social Engineers?
The Rise of AI in Phishing: Will future phishing attacks that leverage artificial intelligence be more dangerous?
CSO
Generative AI phishing fears realized as model develops “highly convincing” emails in 5 minutes
Security leaders’ concerns about generative AI’s potential to create more sophisticated email attacks are well justified.
Ars Technica
Stanford researchers challenge OpenAI, others on AI transparency in new report
Researchers say "most transparent" AI model scores only 54% on their index.
The Hacker News
Who's Experimenting with AI Tools in Your Organization?
See how you can find out in minutes with Nudge Security. Automate discovery of new AI tools as they are introduced, collect context on how AI tools ar
Bleeping Computer
Microsoft announces Security Copilot early access program
Microsoft announced this week that its ChatGPT-like Security Copilot AI assistant is now available in early access for some customers.
Ars Technica
Thanks to AI, the future of programming may involve YELLING IN ALL CAPS
Politeness and emphasis play a surprising role in AI-model communications.
SecurityWeek
Philippine Military Ordered to Stop Using Artificial Intelligence Apps Due to Security Risks
Philippine defense chief ordered military personnel to stop using applications that use AI to create portraits, citing security risks.
SecurityWeek
Harmonic Lands $7M Funding to Secure Generative AI Deployments
The British startup is working on software to mitigate against the ‘wild west’ of unregulated AI apps harvesting company data at scale.
Ars Technica
At TED AI 2023, experts debate whether we’ve created “the new electricity”
Is AI going to replace us all, or is it just humanity's newest tool?
Infosecurity News
Google Play Protect Bolsters Security Against Malicious Apps
New real-time scanning feature conducts analyses of an app’s code during the installation process
Infosecurity News
AI Adoption Surges But Security Awareness Lags Behind
The ExtraHop survey involved over 1200 global security and IT leaders
Ars Technica
AI chatbots can infer an alarming amount of info about you from your responses
This troubling ability could be used by scammers or to target ads.
The Hacker News
Exploring the Realm of Malicious Generative AI: A New Digital Security Challenge
The cybersecurity world faces a new threat: malicious Generative AI, including FraudGPT & WormGPT. How do they impact our digital safety?
Cyber Security News
ChatGPT for Vulnerability Detection - Prompts Used and their Responses
Language models like CodeBERT, GraphCodeBERT, and CodeT5 can identify, explain, assess, and suggest patches for vulnerabilities.
Latest Hacking News
Microsoft Launches Bug Bounty Program For AI Bing Across All Products
Following the roll-out of new AI-powered Bing across different products, Microsoft has launched a dedicated bug bounty program for this technology. Under this program, security researchers and bug hunters can earn up to $15,000 for
ZDNet
Ransomware victims continue to pay up, while also bracing for AI-enhanced attacks
Most organizations have paid up in a ransomware attack, with more than half shelling out over $100,000, and most see generative AI offering malicious hackers more ways to launch attacks, according to a recent survey.
The Hacker News
How to Guard Your Data from Exposure in ChatGPT
Employee usage of GenAI apps like ChatGPT surged by 44% in just 3 months! But at what cost to data security? Dive into LayerX's report for insights
Cyber Security News
How LLM-like Models like ChatGPT patch the Security Gaps in SoC Functions
The emergence of Large Language Models (LLMs) is transforming NLP, enhancing performance across NLG, NLU, and information retrieval tasks.
CSO
Microsoft, American Express most spoofed brands in financial services phishing emails
Research discovers “interesting developments” in the delivery methods, techniques, themes, and targeted brands of email phishing against financial services.
Bleeping Computer
Generative AI Security: Preventing Microsoft Copilot Data Exposure
Microsoft Copilot introduces potential privacy risks as it can have full access to your organization's documents, email, contacts, chats, and calendar. Learn more from Varonis about Microsoft Copilot's security model works and the privacy risks associated with using it.
Ars Technica
So far, AI hasn’t been profitable for Big Tech
Microsoft loses around $20 per user per month on GitHub Copilot, according to the WSJ.
Cyber Security News
ChatGPT, FraudGPT, and WormGPT Plays A Vital Role in Social Engineering Attacks
In cybersecurity's evolution, generative AI models like ChatGPT, FraudGPT, and WormGPT bring innovation and new challenges.
Cyber Security News
HackerGPT: A ChatGPT Empowered Penetration Testing Tool
HackerGPT is a ChatGPT-enabled penetrating testing tool that can help with network hacking, mobile hacking, different hacking tactic..
Ars Technica
Tired of shortages, OpenAI considers making its own AI chips
At an estimated 4 cents per ChatGPT query, OpenAI looks for cheaper AI chip solutions.
Cyber Security News
OpenAI is reportedly developing its Own AI chips
The maker of ChatGPT, OpenAI, is looking at making its own artificial intelligence chips, which are necessary for operating the highly popular chatbot.
The Hacker News
"I Had a Dream" and Generative AI Jailbreaks
AI jailbreaks and prompt manipulations pose serious risks to large language models. Explore the vulnerabilities and the quest for solutions.
Ars Technica
AI firms working on “constitutions” to keep AI from spewing toxic content
Broken guardrails for AI systems lead to push for new safety measures .
The Record
From AI with love: Scammers integrate ChatGPT into dating-app tool
Dubbed LoveGPT by researchers at Avast, the tool can get around dating apps' security measures, send likes, read replies from potential matches and create believable profiles.
CSO
ChatGPT “not a reliable” tool for detecting vulnerabilities in developed code
NCC Group report claims machine learning models show strong promise in detecting novel zero-day attacks.
The Record
Global internet freedoms fell again last year as the threat of AI looms
The internet was less free and open for users around the world last year, the human rights advocacy organization Freedom House said Wednesday — a trajectory that has the potential to worsen if artificial intelligence tools are used in undemocratic ways.
SecurityWeek
Actor Tom Hanks Warns of Ad With AI Imposter
Actor Tom Hanks and talk show co-host Gayle King were warning fans about ads featuring imposters generated by artificial intelligence.
Ars Technica
Dead grandma locket request tricks Bing Chat’s AI into solving security puzzle
"I'm sure it's a special love code that only you and your grandma know."
Cyber Security News
HuntGPT: AI-Based Intrusion Detection Tool
HuntGPT, a dashboard with a Random Forest classifier trained on KDD99, utilizes XAI frameworks like SHAP and Lime for enhanced user-friendliness.
Latest Hacking News
Hackers Meddle With Bing Chat Ads To Promote Malicious Links
Researchers have discovered a new phishing campaign that exploits Microsoft’s Bing Chat to promote malicious URLs. The campaign involves creating malicious ads via legit ads businesses to rank higher and appear in Bing Chat responses
Infosecurity News
Microsoft’s Bing AI Faces Malware Threat From Deceptive Ads
Malwarebytes said the goal of these tactics is to lure victims into downloading malicious software
Ars Technica
Meta launches consumer AI chatbots with celebrity avatars in its social apps
WhatsApp, Instagram add animated AI chat avatars, including Snoop Dogg as dungeon master.
Computerworld
Google to block Bard conversations from being indexed on Search
The company said the conversations were being indexed accidentally after an SEO Consultant took to Twitter, now X, to report the issue.
Ars Technica
Jony Ive and OpenAI’s Altman reportedly collaborating on mysterious AI device
Despite total lack of specifics, rumored collaboration has everyone guessing.
Ars Technica
Can you melt eggs? Quora’s AI says “yes,” and Google is sharing the result
Incorrect AI-generated answers are forming a feedback loop of misinformation online.
Ars Technica
ChatGPT update enables its AI to “see, hear, and speak,“ according to OpenAI
Image recognition and voice features aim to make the AI bot's interface more intuitive.
CSO
Baffle releases encryption solution to secure data for generative AI
Solution uses the advanced encryption standard algorithm to encrypt sensitive data throughout the generative AI pipeline.
Ars Technica
Getty Images subscribers to get access to AI image generator
Getty will indemnify customers against lawsuits and pay artists on "recurring basis."
The Hacker News
Watch the Webinar — AI vs. AI: Harnessing AI Defenses Against AI-Powered Risks
Leveraging the power of AI in cybersecurity to outsmart ever-evolving threats. Discover how it can be your ultimate ally!
Computerworld
Q&A: How one CSO secured his environment from generative AI risks
Having a plan in place before deploying genAI for software product development and employee assistance tools is critical, says Navan CSO Prabhath Karanth. Otherwise, the threat potential is high.
Ars Technica
AI-generated books force Amazon to cap ebook publications to 3 per day
"In order to help protect against abuse, we are lowering the volume limits we have in place."
Computerworld
ServiceNow embeds AI-powered customer-assist features throughout products
ServiceNow's new chatbot works across applications and can summarize customer service interactions and perform case, incident, and agent chat summarizations; act as a virtual agent; and perform search functions.
The Record
British government quietly sacks entire board of independent AI advisers
The U.K. has disbanded the Centre for Data Ethics and Innovation's (CDEI) advisory board as the government switches focus to a Frontier AI Taskforce prompted in part by the rise of ChatGPT.
Ars Technica
OpenAI’s new AI image generator pushes the limits in detail and prompt fidelity
With better response to details and text, DALL-E 3 hopes to make prompt engineering obsolete.
CyberSecurity Dive
AI is entering the enterprise application security tool stack
Reports from Gartner and Rackspace show a broad enterprise appetite to weave AI into the tool stack, especially across application security.
Cyber Security News
ChatGPT-Powered Malware Analysis
An interactive online malware analysis sandbox ANY.RUN has recently introduced a new ChatGPT AI-driven detection approach.
CSO
Skyhawk Security ranks accuracy of LLM cyberthreat predictions
Generative AI benchmark evaluates the ability of large language models to identify and score cybersecurity threats within cloud logs and telemetries.
Ars Technica
Telling AI model to “take a deep breath” causes math scores to soar in study
DeepMind used AI models to optimize their own prompts, with surprising results.
Ars Technica
Google’s AI assistant can now read your emails, plan trips, “double-check” answers
Google admits that Bard isn't always accurate; ropes in Gmail through new Extensions.
SecurityWeek
HiddenLayer Raises Hefty $50M Round for AI Security Tech
Texas startup attracts major investor interest to build an MLMDR (machine learning detection and response) technology.
SecurityWeek
Venafi Leverages Generative AI to Manage Machine Identities
Venafi launched a proprietary generative AI model to help with the mammoth, complex, and expanding problem of managing machine identities.
The Hacker News
Live Webinar: Overcoming Generative AI Data Leakage Risks
The rise of generative AI like ChatGPT brings new risks. Join our webinar featuring industry experts to learn how to protect your data from exposure.
SecurityWeek
Microsoft AI Researchers Expose 38TB of Data, Including Keys, Passwords and Internal Messages
Exposed data includes backup of employees workstations, secrets, private keys, passwords, and over 30,000 internal Microsoft Teams messages.
Cyber Security News
Hackers Released Updated Version of Black Hat AI Tool WormGPT V2
Threat actors with ChatGPT-like tools could pose major cybersecurity and safety risks. Highlights the need for vigilant AI development to prevent misuse.
SecurityWeek
In Other News: China Blames NSA for Hack, AI Jailbreaks, Netography Spin-Off
Noteworthy stories that might have slipped under the radar: China blames NSA for a cyberattack, AI jailbreaks, and Netography spin-off.
Bleeping Computer
Bing Chat AI is down, affecting Windows Copilot and more
Bing Chat, the famous ChatGPT-powered chatbot that allows users to converse with various personalities and topics has connectivity issues worldwide.
The Hacker News
The Interdependence between Automated Threat Intelligence Collection and Humans
From optimization to detecting new threats, here's why humans are needed in automated threat intel
%20Penetration%20Testing%20(1).webp)
Cyber Security News
Point Of Sale Device (POS) Penetration Testing - A Practical Guide 2023
Penetration testing of point-of-sale (POS) devices is essential to ensure the security of payment systems and protect sensitive customer data
Ars Technica
Private AI summit with Senate, titans of tech garners controversy
With 14 of 22 attendees being CEOs, some experts say key voices were missing.
SecurityWeek
Tech Industry Leaders Endorse Regulating Artificial Intelligence at Rare Summit in Washington
Tech executives discussed government regulations for artificial intelligence (AI) at a closed-door meeting in the U.S. Senate.
SecurityWeek
SecurityWeek to Host Cyber AI & Automation Summit
Cyber AI Summit will explore cybersecurity use-cases for artificial intelligence (AI) technology and the race to protect LLM algorithms from adversarial use.
Ars Technica
Coca-Cola embraces controversial AI image generator with new “Y3000” flavor
Tie-in Coca-Cola mobile app uses Stable Diffusion to modify your photos.
DarkReading
ChatGPT Jailbreaking Forums Proliferate in Dark Web Communities
By code or by command, cybercriminals are circumventing ethical and safety restrictions to use generative AI chatbots in the way that they want.
Infosecurity News
Cyber-criminals “Jailbreak” AI Chatbots For Malicious Ends
SlashNext research shows that most of these tools connect to jailbroken versions of public chatbots
SecurityWeek
Thousands of Code Packages Vulnerable to Repojacking Attacks
Researchers continue finding Repojacking attack methods and thousands of code packages and millions of users could be at risk.
SecurityWeek
Vector Embeddings – Antidote to Psychotic LLMs and a Cure for Alert Fatigue?
In this article, we look at two cybersecurity applications of vector embeddings within a vector database.
Infosecurity News
Europol: Financial Crime Makes “Billions” and Impacts “Million
Policing group releases first ever report on the topic
Ars Technica
Microsoft offers legal protection for AI copyright infringement challenges
"Some customers are concerned about the risk of IP infringement claims," says Microsoft.
Ars Technica
The AI-assistant wars heat up with Claude Pro, a new ChatGPT Plus rival
For $20 a month, Claude fans can get 5x higher usage limits, early access to new features.
Ars Technica
OpenAI admits that AI writing detectors don’t work
No detectors "reliably distinguish between AI-generated and human-generated content."
DarkReading
NFL Security Chief: Generative AI Threats a Concern as New Season Kicks Off
Deepfake videos and audio of NFL players and phishing communications via ChatGPT-like tools are a worry, the NFL's CISO says.
SecurityWeek
The Team8 Foundry Method for Selecting Investable Startups
Team8 uses its CISO Village discussions to uncover these new areas of concern, and to determine what cybersecurity solutions are necessary.
Ars Technica
OpenAI’s first-ever dev conference hopes to draw “hundreds of developers” in November
In-person event will have livestreamed keynote, show company's "latest work."
Cyber Security News
Hackers Using ChatGPT to Generate Malware & Social Engineering Threats
Cybersecurity researchers at the Threat Intelligence Team of Avast recently reported that hackers are actively abusing ChatGPT to generate malware and social engineering threats.
Ars Technica
TurboTax-maker Intuit offers an AI agent that provides financial tips
AI-generated financial advice also arrives in Credit Karma, QuickBooks, and Mailchimp.
Infosecurity News
UK Boards Are Growing Less Concerned About Cyber-Risk
Their global peers feel the opposite, according to Proofpoint study
CSO
CXOs and directors are growing wary of generative AI: Report
Board members report a heightened sense of panic and unpreparedness amid growing security concerns over generative AI.
SecurityWeek
Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs
Malicious packages uploaded to PyPI, NPM, and Ruby repositories are targeting macOS users with information stealing malware.
Computerworld
GenAI in productivity apps: What could possibly go wrong?
In addition to controlling the use of ChatGPT and other standalone tools, companies now have to grapple with generative AI being built into the productivity apps their employees use every day.
The Hacker News
Everything You Wanted to Know About AI Security but Were Afraid to Ask
AI: Hype vs. Reality. Self-driving cars, robot overlords—separating fact from fiction. Dive into the world of AI's true capabilities and how it's evol
The Hacker News
Vietnamese Cybercriminals Targeting Facebook Business Accounts with Malvertising
Cybercriminals are exploiting social media ads on Meta-owned Facebook for malware distribution. With fraudulent ads, they're targeting businesses and
Cyber Security News
Threat and Vulnerability Roundup for the week of August 27th to September 2nd
The latest attack techniques, significant weaknesses, and exploits have all been highlighted. We also provide the most latest software upgrades available to keep your devices secure.
Ars Technica
AI fever turns Anguilla’s “.ai” domain into a digital gold mine
Tiny island country could rake in 10% of its GDP in domain sales this year.
Infosecurity News
Facebook Accounts Targeted by Vietnamese Threat Groups
These groups often sell ads to other cybercriminals, either for a fee or a share of the operations
Ars Technica
Thorny AI ownership questions have Copyright Office seeking public input
Should AI-created works be copyrighted? US regulators want to know what you think.
Ars Technica
Research builds anti-Russia AI disinformation machine for $400
AI makes it cheap and easy to create propaganda at scale.
The Hacker News
How to Prevent ChatGPT From Stealing Your Content & Traffic
ChatGPT and similar AI models are empowering cybercriminals to launch damaging attacks on online businesses. Learn how they're leveraging these tools
Infosecurity News
OpenAI Promises Enterprise-Grade Security with ChatGPT for Business
OpenAI has launched ChatGPT Enterprise highlighting high-profile customers including Klarna, PwC and The Estee Lauder Companies
Infosecurity News
NCSC Issues Cyber Warning Over AI Chatbots
The UK cyber agency highlights the lack of understanding of LLMs among industry and academia
Cyber Security News
OpenAI Released ChatGPT Enterprise With SOC 2 Compliant & Data Encryption
ChatGPT has released a new enterprise version which is claimed to be SOC 2 compliant with Enterprise-grade security & higher-speed ChatGPT-4 access.
The Record
UK cyber agency warns of potentially fundamental flaw in AI technology
The problem is known as "prompt injection," and it arises when a large language model "inherently cannot distinguish between an instruction and data provided to help complete the instruction," according to the NCSC.
Ars Technica
Google’s $30-per-month “Duet” AI will craft awkward emails, images for you
Google's new kitchen-sink AI branding is everything to everyone in every Workspace app.
SecurityWeek
OpenAI Turns to Security to Sell ChatGPT Enterprise
ChatGPT Enterprise promises “enterprise-grade security” and a commitment not to use prompts and company data to train AI models.
Cyber Security News
How Hackers Abusing ChatGPT Features For Their Cybercriminal Activities - Bypass Censorship
Cybersecurity analysts at Trend Micro, Europol, and UNICRI jointly studied criminal AI exploitation, releasing the "Malicious Uses and Abuses of Artificial Intelligence".
Cyber Security News
4 Cyber Threats that Frequently Evade Detection and How to Address Them
Some cyberattacks are just more evasive than others. While many attacks can be identified and blocked through a system.
Ars Technica
The new spreadsheet? OpenAI introduces ChatGPT Enterprise for businesses
Unlimited GPT-4, encryption, 32K context, and more. Will it become an essential tool?
Cyber Security News
Unleashing the Dark Side: Unveiling Threats & Vulnerabilities in AI Models
The rapid surge in LLMs across several industries and sectors has raised critical concerns about their safety, security, and potential for misuse.
Ars Technica
10X coders beware: Meta’s new AI model boosts coding and debugging for free
New weights-available coding model is free for research and commercial use.
Ars Technica
Nvidia thinks AI boom is far from over as GPU sales drive big earnings win
Everybody wants GPUs for AI, and that's making Nvidia very happy (and rich).
The Record
Privacy regulators tell social media companies to fear the scrapers
Social media companies and other businesses have an obligation to protect users’ publicly available information from data scrapers that gather it for unintended purposes, an international group of privacy regulators said Thursday.
Ars Technica
You can now train ChatGPT on your own documents via API
Developers can now bring their own data to customize GPT-3.5 Turbo outputs.
DarkReading
Study: More Than Half of Browser Extensions Pose Security Risks
Spin.AI's risk assessment of some 300,000 browser extensions had overly permissive access and could execute potentially malicious behaviors.
Ars Technica
Crypto botnet on X is powered by ChatGPT
AI can be very easily harnessed to produce and disseminate misinformation.
CSO
eSentire introduces LLM Gateway to help businesses secure generative AI
The open-source framework aims to help security teams improve their governance and monitoring of generative AI and large language models.
Infosecurity News
New Chrome Feature Alerts Users About Malicious Extensions
The feature, called the “Safety Check,” is designed to address three specific scenarios
Computerworld
Why and how to create corporate genAI policies
Adoption of generative AI is happening at a breakneck pace, but potential threats posed by the technology will require organizations to set up guardrails to protect sensitive data and customer privacy — and to avoid running afoul of regulators.
.webp)
Cyber Security News
Threat and Vulnerability Roundup for the week of August 13th to 19th
Welcome to Cyber Writes' weekly Threat and Vulnerability Roundup, where we provide the most recent information on cybersecurity news. Take advantage of our extensive coverage and keep yourself updated.
Ars Technica
Microsoft AI suggests food bank as a “cannot miss” tourist spot in Canada
AI-penned Microsoft Travel article recommends food bank as a must-see destination.
SecurityWeek
Google Brings AI Magic to Fuzz Testing With Eye-Opening Results
Google sprinkles magic of generative-AI into its open source fuzz testing infrastructure and finds immediate success with code coverage.
CyberScoop
Online influence operators continue fine-tuning use of AI to deceive their targets, researchers say
The use of AI for malign purposes is limited but growing and maturing in key ways, researchers with Google's Mandiant said Thursday.
Ars Technica
An Iowa school district is using ChatGPT to decide which books to ban
Official: "It is simply not feasible to read every book" for depictions of sex.
Ars Technica
AI chatbot scares Snapchat users by posting mysterious video
"I swear I thought that was my wall."
The Record
Senator calls on Google, OpenAI and others to commit to AI safeguards
The chairman of the Senate Select Committee on Technology renewed calls on Wednesday for the world’s leading artificial intelligence companies to prioritize safety and security in their products, saying that voluntary commitments recently agreed to by a range of companies fall short in reducing risks.
Cyber Security News
Threat Actors Using ChatGPT Lure to Target iPhone and Android Users
The "CryptoRom" scam uses ChatGPT to trick victims into downloading fake crypto-trading mobile applications. Android and iPhone users have reported increased instances of similar fraud utilizing apps from official app stores.
Trend Micro
Top 10 AI Security Risks According to OWASP
The unveiling of the first-ever Open Worldwide Application Security Project (OWASP) risk list for large language model AI chatbots was yet another sign of generative AI’s rush into the mainstream—and a crucial step toward protecting enterprises from AI-related threats.
Ars Technica
The New York Times prohibits AI vendors from devouring its content
The paper of record pokes holes in the absorb-everything AI business model.
SecurityWeek
Don’t Expect Quick Fixes in ‘Red-Teaming’ of AI Models. Security Was an Afterthought
Current AI models are simply too unwieldy, brittle and malleable, academic and corporate research shows.
Trend Micro
ChatGPT Highlights a Flaw in the Educational System
Rethinking learning metrics and fostering critical thinking in the era of generative AI and LLMs
.webp)
Cyber Security News
Threat and Vulnerability Roundup for the week of August 6th to 12th
Join us at Cyber Writes for our weekly Threat and Vulnerability Roundup, where we provide the latest updates on cybersecurity news. Keep yourself informed and stay ahead of potential threats with our comprehensive coverage.
Cyber Security News
Phishing Emails Generated by ChatGPT & Human Models Gained 81% Click Rates
Explosive growth in natural language processing, fueled by advances like GPT-4 and Claude, empowers human-like text generation and superhuman linguistic abilities. In just one year, the model size and performance surged significantly, as the current scenario shows that:- Security researchers, including Fredrik Heiding, recently demonstrated at Black Hat USA 2023 that large language models can […]
Ars Technica
Sites scramble to block ChatGPT web crawler after instructions emerge
Restrictions don't apply to current OpenAI models, but will affect future versions.