WSJ: "Merck’s Insurers On the Hook in $1.4 Billion NotPetya Attack, Court Says"

May 3, 2023 10:45:35 AM By Stu Sjouwerman

I get the WSJ Cybersecurity newsletter, which by the way is warmly recommended. Kim Nash today reported a shocker which will make everyone's insurance premiums go even further up: "Six ...

Does ChatGPT Have Cybersecurity Tells?

Apr 27, 2023 8:46:59 AM By Stu Sjouwerman

Poker players and other human lie detectors look for “tells,” that is, a sign by which someone might unwittingly or involuntarily reveal what they know, or what they intend to do. A ...

[Jaw-Dropper] FTX's Cybersecurity Was Hilariously Bad

Apr 11, 2023 7:05:54 AM By Stu Sjouwerman

4/11/2023 - Gizmodo just dropped this eye-roll inducing news. The disgraced crypto exchange had no dedicated cybersecurity staff and "protected" users assets with minimal safeguards, ...

"We are hurtling toward a glitchy, spammy, scammy, AI-powered internet."

Apr 5, 2023 3:06:23 PM By Stu Sjouwerman

This MIT Technology Review headline caught my eye, and I think you understand why. They described a new type of exploit called prompt injection.

The New Face of Fraud: FTC Sheds Light on AI-Enhanced Family Emergency Scams

Mar 31, 2023 9:41:32 AM By Stu Sjouwerman

The Federal Trade Commission is alerting consumers about a next-level, more sophisticated family emergency scam that uses AI which imitates the voice of a "family member in distress".

The Pope, Puff Jackets and Money going POOF!

Mar 29, 2023 4:40:39 PM By Stu Sjouwerman

You have probably seen it. Pope Francis in a designer puff jacket. It fooled millions of people. Culture writer Ryan Broderick called it the “first real mass-level AI misinformation case.”

[Eyes Only] New Deepfake Pr0n Site Visits Skyrocket

Mar 28, 2023 10:39:31 AM By Stu Sjouwerman

This is a disgusting topic. It's also a very high social engineering risk. I will keep this post safe-for-work, which is not easy. NBC news just reported on the deepfake economy surging ...

Oversharing Is a Risk to Information Security

Mar 27, 2023 1:54:56 PM By Stu Sjouwerman

Younger employees need to be wary of oversharing company information on social media, according to John Karabin, senior director of cybersecurity at NTT Ltd. In an article for ...

[Security Masterminds] Unlock Maximum Cybersecurity: 3 Crucial Steps to Enhance Your Capabilities, Coverage, and Culture

Mar 23, 2023 10:44:37 AM By James McQuiggan

Do you ever feel like you are always playing catch up regarding cybersecurity? That it is a never-ending game; no matter what you do, you are always one step behind. You are not alone. ...

Half of Organizations Report at Least Monthly Outages from Cyberattacks

Mar 23, 2023 8:13:51 AM By Stu Sjouwerman

New data on the current state of cybersecurity shows that organizations are experiencing challenges, falling behind, and seeing the impact of all this post-attack.

The Future of Cyber Attacks? Speed, More Speed

Mar 22, 2023 8:46:51 AM By Roger Grimes

I get asked all the time to “predict” the future of cybercrime. What will be the next big cyber attack? What will be the next paradigm platform shift that attackers will target? And so on.

[Eye Popper] The AI Genie Has Escaped: Stanford copied ChatGPT for a few hundred bucks

Mar 20, 2023 10:52:53 AM By Stu Sjouwerman

Yikes. Loz Blain at NewAtlas just reported that Stanford has copied the ChatGPT AI for less than $600. The article started out with: "Stanford's Alpaca AI performs similarly to the ...

Threat Actors are Using FINRA Impersonation For Their Attacks

Mar 13, 2023 1:13:47 PM By Stu Sjouwerman

DomainTools warns that a sophisticated West Africa-based fraud group is impersonating the Financial Industry Regulatory Authority (FINRA) to target users in the United States, according ...

Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

Mar 8, 2023 6:12:43 AM By Stu Sjouwerman

Robert Lemos at DARKReading just reported on a worrying trend. The title said it all, and the news is that more than 4% of employees have put sensitive corporate data into the large ...

[On-Demand] A Master Class on Cybersecurity: Roger Grimes Teaches Data-Driven Defense

Mar 6, 2023 8:00:00 AM By Stu Sjouwerman

Even the world’s most successful organizations have significant weaknesses in their cybersecurity defenses, which determined hackers can exploit at will. There’s even a term for it: ...

[Eye Opener] Businessweek: The Satellite Hack Everyone Is Finally Talking About

Mar 2, 2023 7:09:33 AM By Stu Sjouwerman

This morning, Bloomberg News pointed at a brand new article at BusinessWeek, one of their media properties. This is an excellent article that exposes the vulnerabilities when ...

The Curse of Cybersecurity Knowledge

Feb 17, 2023 10:54:25 AM By Javvad Malik

The curse of knowledge is a cognitive bias that occurs when someone is trying to communicate information to another person, but falsely assumes that the other person has the same level of ...

How Artificial Intelligence Can Make or Break Cybersecurity

Feb 7, 2023 8:26:47 AM By James McQuiggan

With the introduction of OpenAI's Chat GPT, artificial intelligence is no longer considered part of science fiction. It has presented a new problem for cybersecurity professionals, as ...

Initial Access Brokers Leverage Legitimate Google Ads to Gain Malicious Access

Feb 2, 2023 4:31:56 PM By Stu Sjouwerman

A threat actor tracked as DEV-0569 appears to be using a combination of Google Ads and impersonated websites to compromise credentials and distribute malware to gain network access.

[On-Demand] Artificial Intelligence, ChatGPT and Cybersecurity: A Match Made in Heaven or a Hack Waiting to Happen?

Feb 1, 2023 9:24:06 AM By Stu Sjouwerman

Artificial intelligence (AI) is no longer science fiction.

Security Awareness Training Blog

Cybersecurity Blog

View Topics