Who would have guessed? Researchers at the University of Illinois Urbana-Champaign (UIUC) fed AI agents vague descriptions of more than a dozen unpatched vulnerabilities. The agent they created with GPT-4 exploited 87 percent of those vulnerabilities. Fourteen other agents made with lesser tools like GPT 3.5 and Metasploit failed. The researchers said that GPT-4 was […]
Continue reading → [DISPLAY_ACURAX_ICONS]AI is good and getting better. We already saw a deep fake video fool some EU presidents into thinking they were talking to the head of the African Union. And another deep fake video fooled an accountant at a large European company to wire $25 million to a hacker. Here is another one. The hacker […]
Continue reading → [DISPLAY_ACURAX_ICONS]DoD Opens Cyber Policy Office As reported earlier, the planned opening of the Office of the Assistant Secretary of Defense for Cyber Policy officially happened on March 20th. Ashley Manning will manage it until the Senate confirms someone else. President Biden announced that his nominee will be Michael Sulmeyer. Whether the Senate confirms him or […]
Continue reading → [DISPLAY_ACURAX_ICONS]Five Eyes Agencies: SolarWinds Hackers Adopting New Tactics As businesses move to the cloud, hackers are adopting new techniques since Software as a Service providers are much better at patching than most companies are. Instead, the Russian hackers are stealing authentication tokens and using them to get access to the cloud, including creating new accounts […]
Continue reading → [DISPLAY_ACURAX_ICONS]Sorry, this is going to be a bit convoluted, so try to stay with me. First we had encryption. Things were good. Encryption was based on mathematically hard problems and computers could not do the math, even in, potentially, a hundred thousand years. Then came Quantum computing. Or at least it is coming. Or maybe […]
Continue reading → [DISPLAY_ACURAX_ICONS]Veracode makes software that tests your software for vulnerabilities. Software developers use Veracode’s product to see if their software is vulnerable. Here is some information based on scanning over one million applications: Veracode says that AI-Generated code brings security bugs at scale and will likely add to security or technical debt. AI tools might also […]
Continue reading → [DISPLAY_ACURAX_ICONS]