December 26, 2023 at 02:02PM Security professionals are excited about the potential of generative AI (GenAI) but express concerns about its impact. A survey by Dark Reading finds high awareness and concern about security risks, unauthorized use by employees, and the need for risk management tools in organizations. Respondents also highlight challenges in regulatory compliance, … Read more
December 21, 2023 at 11:49AM OpenAI has addressed a data exfiltration bug in ChatGPT that could leak conversation details. The latest fix includes client-side checks, but it’s not perfect and attackers may still exploit it under certain conditions. Safety checks are not yet implemented in the iOS app, leaving the risk unaddressed. The issue was … Read more
December 19, 2023 at 01:05PM Large language models (LLMs) such as ChatGPT have found various uses in enterprise security, from log analysis to rewriting documentation. Google Bard is being tested for simplifying and rewriting security policies. It offers unique features such as authoritative language and multiple draft options, making it a valuable tool for creating … Read more
December 14, 2023 at 10:08AM The annual Hack the Capitol event brings together scientists, hackers, and policymakers to educate about critical cybersecurity challenges. The convergence of AI, security concerns, and policy efforts is evident. Public support for new policy guardrails has reinforced government and industry involvement with bug bounties. Government agencies have stepped up to … Read more
December 1, 2023 at 05:54AM Researchers discovered a method that could potentially trick ChatGPT into revealing its training data, which was considered a ‘silly’ yet plausible attack vector. Source: SecurityWeek Meeting Takeaway: A security-related issue was discussed where it was found that ChatGPT could potentially be compromised via a ‘silly’ attack technique, leading to unauthorized … Read more
November 22, 2023 at 06:54AM Summary: Employees’ strong demand for AI tools is putting pressure on CISOs and cybersecurity teams to adopt AI quickly, even if it means overlooking security risks. Indie AI startups, in particular, lack security rigor compared to enterprise AI and pose risks such as data leakage, content quality issues, product vulnerabilities, … Read more
November 20, 2023 at 09:33AM Microsoft has hired Sam Altman and Greg Brockman, two key figures from OpenAI, to lead its new advanced AI research team. Altman’s firing from OpenAI caused tension within the company, leading new CEO Emmett Shear to promise an investigation. Despite the rift, both Shear and Microsoft CEO Satya Nadella remain … Read more
November 18, 2023 at 07:15AM Open AI has removed CEO Sam Altman after a review found he was not consistently candid in his communications with the board. Mira Murati, OpenAI’s chief technology officer, will serve as interim CEO while the company searches for a permanent replacement. Altman’s departure has brought uncertainty to the future of … Read more
November 14, 2023 at 05:07AM This blog entry discusses the risks associated with the use of ChatGPT and other AI technologies, particularly in the development of malware. It explores the effectiveness of safety filters implemented by OpenAI to prevent misuse, as well as the limitations of current AI models in automated malware creation. The blog … Read more
November 10, 2023 at 10:32AM Cloudflare’s website experienced a distributed denial-of-service (DDoS) attack by Anonymous Sudan. The attack only affected the www.cloudflare.com website and did not impact other services. Cloudflare confirmed that the outage was caused by a DDoS attack but did not attribute it to a specific threat actor. Anonymous Sudan has also claimed … Read more