Google has filed suit in federal district court in California to stop alleged fraudsters from leveraging public interest in artificial intelligence generally and Bard in particular to spread malware. The perpetrators, who are believed to be based in Vietnam, are said to be using Facebook to promote an “unpublished” version of Bard that when downloaded installs password-stealing malware into the host system. The suit claims the scammers are using Google’s trademark-protected intellectual property — including its name and that of Bard, its brand look and colors, and photographs of CEO Sundar Pichai to promote an illegal scheme. Continue reading Google Seeks Out Scammers Using Bard to Spread Malware

OpenAI recently announced it is developing formal AI risk guidelines and assembling a team dedicated to monitor and study threat assessment involving imminent “superintelligence” AI, also called frontier models. Topics under review include the required parameters for a robust monitoring and prediction framework and how malicious actors might want to leverage stolen AI model weights. The announcement was made shortly prior to the Biden administration issuing an executive order requiring the major players in artificial intelligence to submit reports to the federal government assessing potential risks associated with their models. Continue reading OpenAI Creates a Team to Examine Catastrophic Risks of AI

Ransomware attacks have surged in the 12 months ending in June 2023, with the United States accounting for 43 percent of the 1,900 attacks reported — 7x greater than that of the second most popular target, the United Kingdom, at 196. The period marked a 75 percent increase in U.S. ransomware attacks, which were perpetrated by 48 different groups including CL0P, a gang believed to have ties to Russia. U.S. companies, governmental organizations and individual consumers were targeted during the period, with healthcare and educational institutions disproportionately impacted, according to a study by cybersecurity firm Malwarebytes. Continue reading U.S. Impacted by Significant Increase in Ransomware Attacks

President Biden has secured voluntary commitments from seven leading AI companies who say they will support the executive branch goal of advancing safe, secure and transparent development of artificial intelligence. Executives from Amazon, Anthropic, Google, Inflection, Meta, Microsoft and OpenAI convened at the White House on Friday to support the accord, which some criticized as a half measure, claiming the companies have already embraced independent security testing and a commitment to collaborating with each other and the government. Biden stressed the need to deploy AI altruistically, “to help address society’s greatest challenges.” Continue reading Top Tech Firms Support Government’s Planned AI Safeguards

Quantum computing promises future benefits, but also poses present-day cybersecurity risks that the federal government is urging commercial businesses to prepare for now. In fact, a law passed in December, the Quantum Computing Cybersecurity Preparedness Act, requires federal agencies to develop security plans addressing the vulnerability posed by the so-called “Y2Q” moment. Quantum computers are so quick and efficient as to be able to crack virtually any encryption. Although quantum computing is still in the development stage, the machines are expected to reach practical operability by 2030. Continue reading Feds Say Time to Prep for Y2Q Quantum Computer Hacking

Cybersecurity was a major topic at CES 2023, and one panel described strategies around one of the important and often ignored components: people. Moderated by Strategic Cyber Ventures chief executive Hank Thomas, panelists examined people’s personal relationship with cybersecurity, how they fall victim to cybercrime and how they could be incentivized to take more responsibility for their online activities. Terranet Ventures executive in residence Carole House, who was recently director of cybersecurity at the National Security Council in The White House, said that seeing individuals badly impacted “elevates cybercrime as a national imperative.” Continue reading CES: Focus on People Component for Strong Cyber Strategy

At a CES panel, CISA director Jen Easterly sounded the alarm on the current state of cybersecurity in the U.S. “We cannot accept that ten years from now it will be the same or worse than it is now,” she said. “All the critical infrastructure we rely on is underpinned by a technology base that was created in an insecure way.” As head of the Cybersecurity and Infrastructure Security Agency, Easterly is in a position to assess the coming damage, projected to be $8 trillion this year. Moderator Rajeev Chand, Wing Venture Capital partner led Easterly and CrowdStrike chief executive George Kurtz in a discussion on how to halt the increase of cyber-insecurity. Continue reading CES: As Risks Rise, Experts Reimagine Path to Cyber Safety

The decentralization that promised to make cryptocurrencies accessible, transparent, and an everyman’s investment dream has turned into a nightmare for many. While professional investors have largely done well shorting blockchain stock, other individuals haven’t been as successful. Fortune wrote of “crypto carnage” in a market that has so far lost $1 trillion in this year’s market selloffs. Bitcoin has lost about 50 percent of its market value this year, while Ethereum has fallen by 56 percent since January. Last week, the European Union advanced a framework for crypto-assets that includes consumer protection and safeguards against cybercrime. Continue reading EU Advances Crypto Regulation in Face of Small Investor Pain

Nearly $30 billion was spent on NFTs last year, according to analytics firm Chainalysis, and one of the companies that’s benefitted from the boom is OpenSea. The firm has a $13 billion valuation thanks to its well-timed entry into the hot new sector, becoming one of the biggest NFT marketplaces in the world. With success has come headaches, as scam artists began to target NFTs and the people who buy and sell them. Now the four-year-old New York firm and other marketplaces are struggling to find a balance between boomtown and lockdown. Continue reading Cybercriminals Target NFTs on OpenSea, Other Marketplaces

Payments flagged by U.S. banks as suspected ransomware in 2021 are on pace to nearly double those of 2020, according to reports filed with the Treasury Department. Almost $600 million in potential ransomware payments have been filed with the federal government from January through June, which is more than 40 percent more than the tally for full-year 2020. Reflecting the fact that governments worldwide describe cybercrime as a critical national security threat, the first International Cybersecurity Challenge is scheduled for Greece in June 2022, where 25 Americans aged 18 to 26 are set to compete. Continue reading U.S. Advances Cybersecurity Steps as Ransomware Doubles

By the end of 2021, cybercrime will cost the world an estimated $6 trillion through 2021, a figure that will swell to $10.5 trillion by 2025, according to Cybersecurity Ventures. To deal with that threat, Google has created the Cybersecurity Action Team (GCAT) and the Work Safer security bundle to help protect organizations, small businesses, enterprises and public sector institutions against cyberattacks. At Google Cloud Next ’21, the company said the Google Cybersecurity Action Team will draw on expertise from across the company to help protect entities from data breaches and help meet new government compliance rules. Continue reading Google Action Team Is Ready for Its Cybersecurity Close-Up

An increasing number of cities, hospitals and businesses are being attacked by ransomware, by which bad actors shut down the victim’s computer network until a ransom is paid. Up until now, these attacks have been hard to measure since many of those impacted quietly paid the ransom without notifying any authorities. Security firm Emsisoft just reported a 41 percent increase in ransomware attacks between 2018 and 2019, with 205,280 businesses and other groups submitting evidence of such intrusions in 2019. Continue reading Ransomware Attacks Increase and Demand Bigger Payouts

According to six sources, in response to FBI concerns, Apple dropped the plan to allow iPhone users to encrypt backups in its iCloud service. Although this took place two years ago, it is just now being reported. Stress between Apple’s stance on privacy and law enforcement’s push to have access to its phones re-emerged a few weeks ago when a Saudi Air Force officer killed three Americans at Naval Air Station Pensacola. U.S. attorney general William Barr and President Donald Trump urged Apple to unlock the killer’s two iPhones. Continue reading Apple Drops iCloud Encryption Plan Based on FBI Concerns

Russian hackers have been responsible for serious cybercrimes in the last few years, including Sandworm, a group of hackers who attacked the 2018 Olympics, among other targets. Now, Russia is seeking to replace the 2001 Budapest Convention on Cybercrime with a new agreement that will align with its interests. The country is playing hardball in its attempt to prevent its citizens arrested abroad to be extradited to the U.S. for trial, including holding an Israeli citizen for trade with a Russian hacker held in that country. Continue reading Russia Boosts Efforts to Foil Extradition of Hackers to U.S.

Cyber criminals recently hacked the municipal computers of Rockport, Maine, demanding $1,200 in Bitcoin to unlock them. That’s just one example of a surge of ransomware aimed at municipal computer systems, both large and small, including the city of Atlanta and a St. Louis library system. According to Ponemon Institute, an information systems research firm, these kinds of public sector hacks are increasing faster than those on private ones. City officials are often unprepared to deal with the consequences. Continue reading Municipalities Increasingly Targeted for Ransomware Attacks