Microsoft, OpenAI: Nation-States Are Weaponizing AI in Cyberattacks

It's not theoretical anymore: the world's major powers are working with large language models to enhance their offensive cyber operations. [TechWeb]( Follow Dark Reading: [RSS]( February 15, 2024 LATEST SECURITY NEWS & COMMENTARY [Microsoft, OpenAI: Nation-States Are Weaponizing AI in Cyberattacks]( It's not theoretical anymore: the world's major powers are working with large language models to enhance their offensive cyber operations. [Prudential Files Voluntary Breach Notice With SEC]( The finance services giant says it was hacked — and reported the incident proactively before SEC requirements mandated it. It could be an anti-extortion move, or merely a brand protection effort. [BumbleBee Malware Buzzes Back on the Scene After 4-Month Hiatus]( Cyberattacks targeting thousands of US organizations wields a new attack vector to deliver the versatile initial-access loader — and is a harbinger of a surge in threat activity. [We're at a Pivotal Moment for AI and Cybersecurity]( But generative AI's ability to strengthen security and fortify defenses can keep bad actors in check. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [CISO and CIO Convergence: Ready or Not, Here It Comes]( Recent shifts underscore the importance of collaboration and alignment between these two IT leaders for successful digital transformation. [Ivanti VPN Flaw Exploited to Inject Novel Backdoor; Hundreds Pwned]( A SAML vulnerability in Ivanti appliances has led to persistent remote access and full control for opportunistic cyberattackers. [BofA Warns Customers of Data Leak in Third-Party Breach]( An attack on a technology partner claimed by LockBit ransomware exposed sensitive information, including Social Security numbers, of more than 57,000 banking customers. [How Neurodiversity Can Help Fill the Cybersecurity Workforce Shortage]( Many people with ADHD, autism, dyslexia, and other neurodiverse conditions bring new perspectives that can help organizations solve cybersecurity challenges. [MORE]( PRODUCTS & RELEASES [ISC2 Collaborates With IBM to Launch Entry-Level Cybersecurity Certificate]( [Akto Launches Proactive GenAI Security Testing Solution]( [BlackBerry Provides Update on Progress in Separation of Divisions and Path to Profitability]( [OpenText Joins the Joint Cyber Defense Collaborative to Enhance US Government Cybersecurity]( [OPSWAT Invests $10M in Scholarship Learning Program to Help Close Cybersecurity Skills Gap]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Attackers Exploit Microsoft Security-Bypass Zero-Day Bugs]( The Water Hydra cyberattacker group is one adversary using the zero-days to get past built-in Windows protections. LATEST FROM THE EDGE [10 Security Metrics Categories CISOs Should Present to the Board]( Boards of directors don't care about the minute technical details of the security program. They want to see how key performance indicators are tracked and utilized. LATEST FROM DR TECHNOLOGY [Researchers Map AI Threat Landscape, Risks]( With the rush to adopt large language models, companies have not thought through all of the security implications to their businesses. Two groups of researchers tackle the questions. LATEST FROM DR GLOBAL [Ransomware Epidemic at Romanian Hospitals Tied to Healthcare App]( Threat actors first infected the Hipocrate Information System with a variant of the Phobos ransomware family — and then it spread across the nation's healthcare organizations. WEBINARS - [Securing the Software Development Life Cycle from Start to Finish]( - [Your Everywhere Security Guide: 4 Steps to Stop Cyberattacks]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Understanding Today's Threat Actors]( - [A Solution Guide to Operational Technology Cybersecurity]( - [Zero Trust Access For Dummies, 2nd Fortinet Special Edition]( - [Building Cyber Resiliency: Key Strategies for Proactive Security Operations]( - [Migrations Playbook for Saving Money with Snyk + AWS]( - [2023 Software Supply Chain Attack Report]( - [Understanding AI Models to Future-Proof Your AppSec Program]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( - [How to Deploy Zero Trust for Remote Workforce Security]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=121271&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_02.15.24&sp_cid=51975&utm_content=DR_NL_Dark%20Reading%20Daily_02.15.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#bb If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)