6 Ways Cybersecurity Is Gut-Checking the ChatGPT Frenzy

Generative AI chatbots like ChatGPT are the buzziest of the buzzy right now, but the cyber community is starting to mature when it comes to assessing where it should fit into our lives [TechWeb]( Follow Dark Reading: [RSS]( June 29, 2023 LATEST SECURITY NEWS & COMMENTARY [6 Ways Cybersecurity Is Gut-Checking the ChatGPT Frenzy]( Generative AI chatbots like ChatGPT are the buzziest of the buzzy right now, but the cyber community is starting to mature when it comes to assessing where it should fit into our lives. [Russian Spies, War Ministers Reliant on Cybercrime in Pariah State]( Swiss intelligence warns that Russia ramping up cyberattacks on infrastructure and cyber espionage as on-the-ground options evaporate. [Generative AI Projects Pose Major Cybersecurity Risk to Enterprises]( Developers' enthusiasm for ChatGPT and other LLM tools leaves most organizations largely unprepared to defend against the vulnerabilities that the nascent technology creates. [Npm Plagued With 'Manifest Confusion' Malware-Hiding Weakness]( The popular package manager for software developers has been vulnerable to this attack vector for a while, and negligent in fixing the problem, according to a former employee. [3 Strategies for Bringing Rigor to Software Security]( With the National Cybersecurity Strategy planning to add real teeth into enforcement actions, software vendors have extra incentive to reduce applications' security debt. [LetMeSpy Phone-Tracking App Hacked, Revealing User Data]( With at least 13,000 compromised devices in the data leak, it is still unknown who the threat actor is or whether or not victims will be personally notified. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Pilot Applicant Information for American, Southwest Hacked]( The attack exposed personal information from pilot applicants, prompting both airlines to ditch their third-party provider and move services internally. [Why the FDA's SBOM Mandate Changes the Game for OSS Security]( The new FDA software bill of materials (SBOM) guidelines for medical devices could have broad impact on the healthcare industry and the broader open source ecosystem. [Preventing Cyberattacks on Schools Starts With K–12 Cybersecurity Education]( By investing in a strong future cybersecurity workforce, we can prevent future attacks on US critical infrastructure before they occur. [MORE]( EDITORS' CHOICE [Most Enterprise SIEMs Blind to MITRE ATT&CK Tactics]( Organizations are largely deluded about their own security postures, according to an analysis, with the average SIEM failing to detect a whopping 76% of attacker TTPs. LATEST FROM DR TECHNOLOGY [Social Engineering Adds Depth to Red Team Exercises]( Because social engineering usually succeeds, companies need to test whether their defenses can block adversaries that gain employees' trust. LATEST FROM THE EDGE [The Infrastructure Security Engineer Is a Unicorn Among Thoroughbreds]( This new role of safeguarding cloud deployments requires an exceedingly rare set of technical and soft skills. LATEST FROM DR GLOBAL [Saudi Arabia's Cyber Capabilities Ranked Second Globally]( Saudi Arabia is one of the world's leaders in cybersecurity development and preparedness, according to the latest rankings. WEBINARS - [Finding the Right Role for Identity and Access Management in Your Enterprise]( End user credentials are essential to enabling your employees to gain access to the data and applications they need. Those credentials are also one of the most prized targets that attackers hope to gain. To enable user access and prevent ... - [Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy]( Threat intelligence -- collecting data about broad trends in online attacks -- helps security teams improve their defenses by identifying online exploits that have the potential to hit their organizations and to prioritize their security resources accordingly. But how should ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [ESG Report: Automated Application Security Testing for Faster Development]( - [Welcome to Modern Web App Security]( - [AppSec Best Practices: Where Speed, Security, and Innovation Meet in the Middle]( - [2023 Gartner Market Guide for Cloud-Native Application Protection Platforms (CNAPP)]( - [Top Ten Tips: Securing Multi-Cloud with Modern CSPM]( - [Cybersecurity in 2023 and beyond: 12 leaders share their forecasts]( [View More White Papers >>]( FEATURED REPORTS - [Successfully Managing Identity in Modern Cloud and Hybrid Environments]( Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ... - [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( The enterprise attack surface is constantly expanding. Enterprises have to think beyond zero day vulnerabilities. It's imperative security teams start looking at vulnerabilities in 5G, firmware, edge, and ICS/OT, among others. Managing system vulnerabilities is one of the old ... - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [FIDO Alliance Publishes Guidance for Deploying Passkeys in the Enterprise]( [Astrix Security Raises $25M in Series A Funding]( [Cato Networks Revolutionizes Network Security With Real-Time, Machine Learning-Powered Protection]( [Malwarebytes ChatGPT Survey Reveals 81% are Concerned by Generative AI Security Risks]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How to Use Threat Intelligence to Mitigate Third-Party Risk]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)