ChatGPT Subs In as Security Analyst, Hallucinates Only Occasionally

Incident response triage and software vulnerability discovery are two areas where the large language model has demonstrated success, although false positives are common. [TechWeb]( Follow Dark Reading: [RSS]( February 16, 2023 LATEST SECURITY NEWS & COMMENTARY [ChatGPT Subs In as Security Analyst, Hallucinates Only Occasionally]( Incident response triage and software vulnerability discovery are two areas where the large language model has demonstrated success, although false positives are common. [NIST's New Crypto Standard a Step Forward in IoT Security]( The National Institute of Standards and Technology has settled on a standard for encrypting Internet of Things (IoT) communications, but many devices remain vulnerable and unpatched. [Russian Cybercriminal Faces Decades in Prison for Hacking and Trading Operation]( Vladislav Klyushin and co-conspirators used SEC filings stolen from the networks of Tesla, Roku, and other publicly traded companies to earn nearly $100 million in illegal trades. [How Security Teams Can Protect Employees Beyond Corporate Walls]( De-shaming security mistakes and taking the blame and punishment out of incident reporting can strengthen security efforts both inside and outside of the workplace. [Build Cyber Resiliency With These Security Threat-Mitigation Considerations]( CISOs need to define their risk tolerance, identify specific critical data, and make changes based on strategic business goals. [What Purple Teams Wish Companies Knew]( Here are some of the easily avoidable mistakes most companies made last year, gleaned from hundreds of cybersecurity engagements by red and blue teams. [GAO Calls for Improved Data Privacy Protections]( US federal watchdog agency outlines key measures for better protecting sensitive data under the federal government's control. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [OT Network Security Myths Busted in a Pair of Hacks]( How newly exposed security weaknesses in industrial wireless, cloud-based interfaces, and nested PLCs serve as a wake-up call for hardening the physical process control layer of the OT network. [Why SecDataOps Is the Future of Your Security Program]( The goal: Ensure that data is always finely curated and accessible, and that security decisions get made with high-fidelity data. [Configuration Issues in SaltStack IT Tool Put Enterprises at Risk]( Researchers flag common misconfiguration errors and a template injection technique that could let an attacker take over the IT management network and connected systems. [MORE]( EDITORS' CHOICE [9 New Microsoft Bugs to Patch Now]( 78 new CVEs patched in this month's batch — nearly half of which are remotely executable and three of which attackers already are exploiting. LATEST FROM THE EDGE [3 Ways CISOs Can Lead Effectively and Avoid Burnout]( Information security is a high-stakes field with sky-high expectations. Here's how CISOs can offset the pressures and stay healthy. LATEST FROM DR TECHNOLOGY [Oligo Security Takes Aim at Open Source Vulnerabilities]( The startup's software helps organizations secure their containers in the cloud by teasing out which packages are running and which are vulnerable. WEBINARS - [Ten Emerging Vulnerabilities Every Enterprise Should Know]( Every day, black hat attackers and white hat researchers are discovering new security vulnerabilities in widely-used systems and applications that might be exploited to compromise your data. Are you aware of the newest - and potentially most impactful - vulnerabilities ... - [The Importance of Bespoke Security]( In this webinar, you will hear from our subject matter experts, Hanah Darley, Head of Threat Research and Toby Lewis, Global Head of Threat Analysis. The discussion will cover the difference between media coverage of cyber threats compared with the ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( - [State of Email Security]( - [Ransomware Resilience and Response: The Next-Generation]( - [Ransomware Is On The Rise]( - [State of Ransomware Readiness: Facing the Reality Gap]( [View More White Papers >>]( FEATURED REPORTS - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Brivo Reveals Top Security Trends for 2023: Convenience Is King in Securing the Hybrid Workplaces of the Future]( [Call for Speakers Now Open for the RH-ISAC Cyber Intelligence Summit]( [1898 & Co Launches New Cybersecurity Service for Critical Infrastructure]( [IGEL Unveils COSMOS, the Unified End User Computing Platform for Secure, Managed Access to Any Cloud Workspace]( [5th State of CCPA, CPRA, and GDPR Compliance Report Shows More Than 90% of Companies Are Not Compliant]( [Report Reveals Record-Breaking Year for Cyber Threats]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The Promise and Reality of Cloud Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)