Attackers Are Already Exploiting ChatGPT to Write Malicious Code

The AI-based chatbot is allowing bad actors with absolutely no coding experience to develop malware. [TechWeb]( Follow Dark Reading: [RSS]( January 10, 2023 LATEST SECURITY NEWS & COMMENTARY [Attackers Are Already Exploiting ChatGPT to Write Malicious Code]( The AI-based chatbot is allowing bad actors with absolutely no coding experience to develop malware. [Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone]( Organizations often defer patching because of business disruption fears — but that didn't work out very well for Rackspace's Hosted Exchange service. [JsonWebToken Security Bug Opens Servers to RCE]( The JsonWebToken package plays a big role in the authentication and authorization functionality for many applications. ['Copyright Infringement' Lure Used for Facebook Credential Harvesting]( Business users receive a message from Facebook warning their accounts will be permanently suspended for using photos illegally if they don't appeal within 24 hours, leading victims to a credential-harvesting page instead. [Web 3.0 Shifts Attack Surface and Highlights Need for Continuous Security]( A model of continuous authentication and identification is needed to keep consumers safe. [Serbia Slammed With DDoS Attacks]( The Serbian government reports that it staved off five attacks aimed at crippling Serbian infrastructure. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [PurpleUrchin Gang Embraces DevOps in Massive Cloud Malware Campaign]( The Automated Libra group is deploying all components of its campaign in an automated manner via containers, stealing free trial resources for cryptomining, but the threat could get larger. [Don't Be Blindsided by Software Bills of Materials]( It's imperative we collaborate and partner to improve software security. This may require developing tools and standards that can enrich SBOMs and provide deeper analysis. [Name That Edge Toon: The Upside Down]( Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. [MORE]( EDITORS' CHOICE [In Memoriam: Remembering Those Who Passed]( Security stands on the shoulders of giants. We take a moment to remember their contributions toward keeping people, data, and systems safe. LATEST FROM THE EDGE [7 Use Cases for Distributed Cloud Environments]( As infrastructure has grown more complex, the need to effectively manage it has grown, too – particularly for applications and APIs. LATEST FROM DR TECHNOLOGY [Latest Firmware Flaws in Qualcomm Snapdragon Need Attention]( The issue concerns the boot layer of ARM chips, which are driving a low-power mobile ecosystem that includes 5G smartphones and base stations. WEBINARS - [Detecting, Analyzing, and Mitigating Targeted Attacks]( For many security professionals, the nightmare scenario keeping them awake at night is a sophisticated, targeted attack aimed directly at their own organization and its specific defenses. In this webinar, experts describe the type of tools and processes necessary to ... - [Zero Trust Security 101: What You Need to Know Before Getting Started]( With varying definitions, variations, and approaches floating around the cybersecurity ecosystem, it can be difficult to get a clear view of what exactly zero trust is, what it means, and what it takes to get it done. In this webinar, ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( - [State of Email Security]( - [Ransomware Resilience and Response: The Next-Generation]( - [Ransomware Is On The Rise]( - [State of Ransomware Readiness: Facing the Reality Gap]( - [How Hybrid Work Fuels Ransomware Attacks]( [View More White Papers >>]( FEATURED REPORTS - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Schneider Electric and BitSight Announce Partnership to Improve Detection of Operational Technology (OT) Cybersecurity Exposure]( [LogRhythm Enhances Security Analytics With Expanded Security Operations Capabilities]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The Promise and Reality of Cloud Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)