ChatGPT: Cybersecurity Threats Overhyped? | Cybersecurity Skills Shortage, Recession Fears Drive 'Upskilling' Training

UK cybersecurity authorities and researchers tamp down fears that ChatGPT will overwhelm current defenses, while the CEO of OpenAI worries about its use in cyberattacks. [TechWeb]( Follow Dark Reading: [RSS]( March 23, 2023 LATEST SECURITY NEWS & COMMENTARY [ChatGPT Gut Check: Cybersecurity Threats Overhyped or Not?]( UK cybersecurity authorities and researchers tamp down fears that ChatGPT will overwhelm current defenses, while the CEO of OpenAI worries about its use in cyberattacks. [Cybersecurity Skills Shortage, Recession Fears Drive 'Upskilling' Training Trend]( For companies, training an existing worker is cheaper than hiring, while for employees, training brings job security and more interesting work. [Unpatched Samsung Chipset Vulnerabilities Open Android Users to RCE Attacks]( Users of affected devices that want to mitigate risk from the security issues in the Exynos chipsets can turn off Wi-Fi and Voice-over-LTE settings, researchers from Google's Project Zero say. [Chinese Warships Suspected of Signal-Jamming Passenger Jets]( Attackers claiming to be part of the Chinese navy are making calls to commercial Qantas pilots midair, while GPS, comms systems, and altimeter instruments are all experiencing denial of service. [BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion]( The ransomware group has already claimed 116 victim organizations so far on its site, and it continues to mature as a thriving cybercriminal business, researchers said. [Custom 'Naplistener' Malware a Nightmare for Network-Based Detection]( Threat actors are using legitimate network assets and open source code to fly under the radar in data-stealing attacks using a set of custom malware bent on evasion. [The Ethics of Network and Security Monitoring]( The chances of getting hacked are no longer low. Companies need to rethink their data collection and monitoring strategies to protect employee privacy and corporate integrity. [Controlling Third-Party Data Risk Should Be a Top Cybersecurity Priority]( Third-party breaches have a wide effect that legacy security practices can no longer detect. [Name That Toon: It's E-Live!]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [How to Keep Incident Response Plans Current]( Review and update plans to minimize recovery time. Practice and a well-thumbed playbook that considers different scenarios will ensure faster recovery of critical data. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Pipeline Cybersecurity Rules Show the Need for Public-Private Partnerships]( The government should not issue infrastructure regulations without the involvement of the industries it's regulating. [Shouldering the Increasingly Heavy Cloud Shared-Responsibility Model]( There are a number of solutions that can help ensure security and compliance mandates are met in the cloud, but organizations should prioritize integration and policy-based management. [5 Ways to Fight School Ransomware Attacks]( The challenges are steep, but school districts can fight back with planning. [MORE]( EDITORS' CHOICE [Microsoft Outlook Vulnerability Could Be 2023's 'It' Bug]( Snowballing PoC exploits for CVE-2023-23397 and a massive attack surface means that almost any business user could be a victim. LATEST FROM THE EDGE [How CISOs Can Work With the CFO to Get the Best Security Budget]( CISOs can and should push back when they're presented with budget costs that affect the business. Here's how. LATEST FROM DR TECHNOLOGY [Technology Firms Delivering Much-Sought Encryption-in-Use]( If the approaches stand up to scrutiny, companies may soon be able to encrypt most databases in a way that allows using data without the need to decrypt to plaintext. WEBINARS - [Managing Identity in the Cloud]( Shifting identity management and provisioning to the cloud helps streamline these operations. It also brings a new set of challenges, including integrating and managing user identities, privileges, and other attributes used in various on-premise and cloud systems, especially if your ... - [Ten Emerging Vulnerabilities Every Enterprise Should Know]( Every day, black hat attackers and white hat researchers are discovering new security vulnerabilities in widely-used systems and applications that might be exploited to compromise your data. Are you aware of the newest - and potentially most impactful - vulnerabilities ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [IT/OT Security Platform Navigator 2022]( - [Top Three Considerations To Build, Deploy, and Run Your Application Journey]( - [Cloud Journey Adoption Stage: Securing Hybrid and Multi-cloud Environments]( - [Cloud Journey Migration Stage: Adaptive Cloud Security]( - [Top 5 ASM Use Cases Every Security Team Must Embrace Now]( - [State of Enterprise Cybersecurity: Invest Now, or Pay Big Later]( - [Seven Ways to Avoid the Nightmare of a Cloud Misconfiguration Attack]( [View More White Papers >>]( FEATURED REPORTS - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [XM Cyber Announces Acquisition of Confluera, Adding Run-Time Protection on Cloud Workloads]( [Vectra Unifies AI-Driven Behavior-Based Detection and Signature-Based Detection]( [Normalyze Granted Patent for Data Security Posture Management (DSPM)]( [Lightspin Launches Remediation Hub to Identify and Fix Cloud Security Threats]( [BigID's Data Security Posture Management Solution Integrates With SOAR Platforms]( [Prancer Announces Integration With ChatGPT for Enhanced Security Assessments]( [Kaspersky Survey Finds One in Three Users Have Experienced CryptoTheft]( [BlackBerry Announces New Patent Sale Transaction With Patent Monetization Company for Up to $900M]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [Shoring Up the Software Supply Chain Across Enterprise Applications]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)