One Article Review
| Source |  knowbe4 |
|---|---|
| Identifiant | 8330904 |
| Date de publication | 2023-04-25 13:00:00 (vue: 2023-04-25 13:07:46) |
| Titre | Cyberheistnews Vol 13 # 17 [Head Start] Méthodes efficaces Comment enseigner l'ingénierie sociale à une IA CyberheistNews Vol 13 #17 [Head Start] Effective Methods How To Teach Social Engineering to an AI |
| Texte |
CyberheistNews Vol 13 #16 | April 18th, 2023
[Finger on the Pulse]: How Phishers Leverage Recent AI Buzz
Curiosity leads people to suspend their better judgment as a new campaign of credential theft exploits a person\'s excitement about the newest AI systems not yet available to the general public. On Tuesday morning, April 11th, Veriti explained that several unknown actors are making false Facebook ads which advertise a free download of AIs like ChatGPT and Google Bard.
Veriti writes "These posts are designed to appear legitimate, using the buzz around OpenAI language models to trick unsuspecting users into downloading the files. However, once the user downloads and extracts the file, the Redline Stealer (aka RedStealer) malware is activated and is capable of stealing passwords and downloading further malware onto the user\'s device."
Veriti describes the capabilities of the Redline Stealer malware which, once downloaded, can take sensitive information like credit card numbers, passwords, and personal information like user location, and hardware. Veriti added "The malware can upload and download files, execute commands, and send back data about the infected computer at regular intervals."
Experts recommend using official Google or OpenAI websites to learn when their products will be available and only downloading files from reputable sources. With the rising use of Google and Facebook ads as attack vectors experts also suggest refraining from clicking on suspicious advertisements promising early access to any product on the Internet.
Employees can be helped to develop sound security habits like these by stepping them through monthly social engineering simulations.
Blog post with links:https://blog.knowbe4.com/ai-hype-used-for-phishbait
[New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist
Now there\'s a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform!
The new PhishER Blocklist feature lets you use reported messages to prevent future malicious email with the same sender, URL or attachment from reaching other users. Now you can create a unique list of blocklist entries and dramatically improve your Microsoft 365 email filters with |
| Envoyé | Oui |
| Condensat | #16 #17 $7bn 094 11th 1706 1790 18th 1947 1965 2022 2023 2023/ 2023:https://www 28:https://informnapalm 2:00 365 90ecee55 :https://www :https://youtu abacuses able about accelerating access accessing according accusations acknowledge across activated actors add added adding addition additional additionally address addresses ads advanced advantage advertise advertisements advisories/icsa affections affinity against aggressive ai:https://blog aida ais alarming alert alerts all alleged allows also amazing america americans analyzes animation any appear appears applications april apt are around arrest assessment assets assist assume asymmetric attachment attachments attack attackers attacks attention automate automation availability available avoid aware awareness away awesome:https://youtu back background bad ball bankruptcy bard barrage based basic battle be/a be/aamtiauwnwa be/l4qcuh5ntgk be/nlejs6scphg be/sieju4tx1cq be/wlx5 beachfront beam bedroom been beginning begins behavior behaviors behind being beloved benjamin best better beyond bike billions bleepingcomputer blocked blocklist blog bloghttps://blog body bond born bothered brave build burden bureaus business but button buzz call campaign campaigns camper can can: capabilities capability capable captures card cars/ cars:https://www case cat catch categories: caused ceo ceoknowbe4 chain channels chatgpt check china chinese chn cinque cisa ciso claim clean clicking clicks close coach coaching code coelho com/affinity com/ai com/articles/u com/blog/threat com/cyberheistnews com/domain com/head com/jaw com/news/security/russian com/news/security/telegram com/phisher com/podcasts/hacking com/resources/ebooks/the com/securitycoach com/spacex com/tax com/tech/security/leaked com/thieves com/vulnerabilities com/watch com/win combination comes command commands comment common communicate communication community company competitors comprehension computer configured considered console consulate contain contained contextual continue continued contracts contribute control convention convincing correctly could country create credential credibility credit crime crimes criminal criminals crypto culprits cultivate curiosity custom customer customers cut cyber cyberattacks:https://www cybercrime cybercriminals cyberheist cyberheistnews cybersecurity cybersixgill cyberwire:https://thecyberwire dangerous dark darkreading data date/time: day deadline dealt decade deception decrease dedicated deer defend defenders defenses:https://www delivered demo deploy describes designed despite destruction details detected devastating develop developers device diamond did didn difference digital discovery disgraced disinformation disinformation:https://www display document documents dog dollars domain doors dost dot double down download downloaded downloading downloads dramatically driven dropped dropper dubbed early earned ease easily easy educating effective effectively efficacy effort efforts either email email: emails employee employees enabled enables encoded end energy enforcement engineering engineers enhance entries episodes: espionage established estate ethnicity eu/ evasion even events events/ics ever exchange excitement execute execution existing expatriates experience experts explained exploit exploits extracts eye facebook facilitate falling false family:https://youtu far fave favorite fbi fears feature features feed feigned fight file files filing filings filters finally finances financial financially find finds finger first fix:https://www flames flixxy follow following follows forgiven formal formed forward forwarding franklin fraud fraudster fraudulent free fresh from ftx ftxs full fun further future gain garage gears general generated get getaway give given gives gizmodo goal going gone good google gov/news government grid grimes group gru guy habits hack hacked hacked: hacker hackers hacking had half happy harass hard hardware has hated have head headlines healthy hear heart heavy help helped her here high highly highway hilariously hints hire hole home home:https://boingboi |
| Tags | Spam Malware Hack Threat |
| Stories | APT 28 ChatGPT ChatGPT |
| Notes | ★★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.