CyberMaterial’s Post

Welcome the arrival of a new malicious code! A new worm❗ has emerged, and upon infiltrating a victim's device, it leverages large language models (LLMs) like ChatGPT. It does this to automatically alter its code structure and signatures, making it exceedingly difficult for most standard antivirus systems to detect. To remind you, a worm is a type of malicious software that not only replicates itself but also spreads across networks, infiltrating various devices. It temporarily lodges on these systems, infecting vulnerable ones, and then continues to propagate further. Here’s what this entails: 🚩 Overloading network resources. 🚩 Activating remote control for attackers. 🚩 Leaking your confidential data. 🚩 Slowing down system performance by consuming substantial resources (CPU, memory), potentially leading to system failures. 🚩 Transforming your host into a 'thoroughfare' for various spyware, Trojans, and of course, adware. Now, returning to this newly hatched persistent worm. Upon infecting a victim's device, it simultaneously generates and disseminates phishing emails using the victim's confidential data. These emails, crafted with the help of artificial intelligence, appear extremely enticing and natural, significantly increasing the likelihood of users eventually opening a malicious attachment in one of these emails. From what I recall of the latest global cybersecurity trends, it is primarily the younger generation that statistically falls prey to phishing scams. Notably, the younger generation frequently uses new technologies, including large language models, often without much concern for their security or even basic digital hygiene. Therefore, I anticipate that this new type of malicious code will spread rapidly across the Internet. What conclusion can we draw from this❓ In the near future, we should expect the emergence of new types of attacks involving similar malicious software that uses active online access to language models and constantly morphs beyond recognition. Information security already struggles to keep pace, perpetually a step behind the attacks. Now, with continuous changes, adapting and creating effective and timely detection and prevention algorithms at the Deep Learning level will be extremely challenging. Moreover, maintaining all this in an up-to-date state... #security

Multiple organizations in Germany have been targeted in a cyberattack utilizing AI-generated PowerShell scripts, potentially created by systems like ChatGPT, Google Gemini, and Microsoft CoPilot. The attackers sent emails containing a malicious script disguised as a ZIP archive attachment. Upon execution, the script ran a remote PowerShell script that deployed the Rhadamanthys information stealer. The cyber security firm, Proofpoint, identified the attacker as Threat Actor 547 (TA547) and confirmed it was their first use of Rhadamanthys. The attack utilized a password-protected ZIP file, claiming to be related to invoices from the German retail company Metro. The code of the attack stood out due to the presence of unconventional comments, resembling output from an LLM-enabled tool, such as ChatGPT or CoPilot. Although LLMs can aid threat actors in understanding attack chains, using them does not alter the malware's functionality or effectiveness. https://lnkd.in/gSUQJUb5

In the shadowy corners of the dark web, a new predator is emerging. Recent findings have unveiled the increasing exploitation of #AI by cybercriminals to develop more advanced malware. The alarming rise of #ransomware attacks and the sale of ChatGPT credentials on the dark web stands out as a stark warning sign, signaling a significant threat to businesses and individuals alike. Even more alarming, nation-state sponsored threat actors are casting a wide net, actively seeking to infiltrate organizations across the globe. Their focus? Key entities in government, healthcare, and manufacturing—sectors that form the backbone of our society. Understanding the evolving tactics of #cybercriminals, especially their misuse of AI tools like ChatGPT, is crucial for staying ahead of emerging threats. CybergymIEC is here to help you adopt comprehensive cybersecurity practices, so you can protect your sensitive data and strengthen your defenses against cybercrime. There is nothing artificial about this threat. Read this full article from Help Net Security and don’t wait to become the next victim 👇🏻

🚨 Urgent Security Alert: Your ChatGPT Account Might Be at Risk! 🚨 Hackers can easily access ChatGPT accounts and read sensitive conversations. Here’s what you need to know: 🔓 Right now, and since it was launched, you can use TOR to enter ChatGPT credentials, and access accounts without additional verification, despite accessing through a suspicious IP address. 🔒 A year ago, 100,000 ChatGPT accounts were compromised due to infostealer infections. Today, that number has skyrocketed to 850,000. ⚠️ Despite this alarming increase, OpenAI has not enhanced its security measures. Accounts remain vulnerable to attacks. Here are the top 3 methods hackers use to gain access: 1. Infostealer infections generate vast amounts of valid ChatGPT credentials. 2. Login attempts using credentials from previous database breaches. 3. Brute-forcing accounts with weak passwords, facilitated by OpenAI’s lenient password requirements. 🔍 The implications are severe. Hackers can read all your personal and corporate conversations without you knowing. Worse, you won’t receive any notifications of new intrusions, nor is there an option to review recent logins. 🔐 Recommendation: Set up Multi-Factor Authentication (MFA) on your ChatGPT accounts to add an extra layer of security and protect your data from unauthorized access. #CyberSecurity #DataPrivacy #ChatGPT #Infosec

🚨 Critical macOS Vulnerability Alert 🚨 A recently discovered flaw in macOS could have granted cyberattackers long-term access to your device through ChatGPT integration. The vulnerability, which has since been patched, would have allowed attackers to gain access to sensitive data and potentially control over your device. This highlights the importance of staying vigilant and following security best practices to protect against ever-evolving cyber threats. 🔒 Check out the full details here: https://lnkd.in/gRutbzxv #Cybersecurity #macOS #TechNews #SecurityUpdate #DataProtection #AI

The recent findings from Group-IB's Hi-Tech Crime Trends Report 2023/2024 highlight a disturbing increase in cyber threats, especially the use of zero-day exploits and the targeting of ChatGPT credentials by cybercriminals. The report reveals a 70% rise in advertisements for zero-day exploits, with subscription fees for these malicious services reaching up to $1000 per month, signaling a more organized and accessible market for cyber attacks. Equally alarming is the surge in interest for compromised ChatGPT credentials within the cybercriminal underworld. Given that large language models (LLMs) like ChatGPT often store chat logs, the lack of stringent multi-factor authentication (MFA) measures makes them a goldmine for attackers seeking sensitive corporate data. Over 225,000 logs containing compromised ChatGPT credentials were discovered on the dark web, highlighting the potential for espionage and more sophisticated cyber attacks. Additionally, the report points to an increased focus on Apple devices, with a significant rise in discussions around macOS stealers on underground forums. This shift reflects the broader adoption of Apple products within corporate environments and underscores the need for businesses to adopt comprehensive cybersecurity strategies. These trends not only underline the sophistication and evolving nature of cyber threats but also stress the importance of enhancing cybersecurity frameworks to protect against both traditional and emerging threats. Organizations must prioritize robust security measures, including the implementation of MFA and continuous monitoring of AI systems, to safeguard against the exploitation of zero-day vulnerabilities and unauthorized access to sensitive data. #sensitivedata #zerodayvulnerabilities #securitymeasures #cyberthreats #chatgpt #mfa #aisecurity #cybersecurity #continuousmonitoring

Between January and October 2023, over 225,000 compromised OpenAI ChatGPT credentials surfaced on underground markets. Malware like LummaC2, Raccoon, and RedLine were involved. Group-IB's report highlights a spike in compromised credentials between August and September 2023. The rise is attributed to increased infections by information-stealing malware. Additionally, the report warns of nation-state actors utilizing AI for cyber attacks. Given the surge in compromised credentials and the evolving threat landscape, bolstering authentication measures and endpoint security is crucial. Investing in robust endpoint security solutions can prevent information-stealing malware infections. https://lnkd.in/ejgsVPGJ

🔒 **Is the Weakest Link in Cybersecurity Becoming Even Weaker?** 🔒 Cybersecurity has always had a significant weak point: humans. It's astonishing to see that despite advancements in technology, a simple human error can still cause huge cybersecurity breaches. Cybint's statistics reveal that 95% of such breaches result from human mistakes. Let's dig into why this vulnerability has increased and what can be done. The Verizon 2023 Data Breach Investigations Report found that 74% of incidents involve some human element, such as clicking on phishing links. We've instilled security awareness training but still see rising breaches, even in prominent organisations like Microsoft and T-Mobile this year. So, why is this problem escalating now more than ever? The advent of deepfakes and AI has added new layers to social engineering attacks. Scammers can now create hyper-realistic fake personas. A finance worker once paid out $25 million after engaging in a video call with a deepfake 'CFO'. This AI capability lowers operational costs and makes large-scale, highly personalised attacks more feasible. Couple this with the unprecedented exposure of personal information. Billions of public records have already been leaked online this year, adding to the hacker arsenal for targeted phishing attacks. Additionally, our diverse communication channels—from Slack to WhatsApp—expand the attack surface, making every conversation a potential entry point for hackers. Remote work has also blurred the lines between personal and work devices, introducing more risk. Interestingly, Gen Z's extensive online presence makes them three times more likely to fall victim to online fraud compared to baby boomers. The need for robust, holistic cybersecurity has never been more critical. We must shift our focus to integrated defences that address both individual and organisational security holistically. What measures have you implemented to safeguard against these evolving threats? Let's discuss! www.stottandmay.com #CyberSecurity #DataProtection #AI

🚨 Urgent Security Alert: Your ChatGPT Account Might Be at Risk! 🚨 Hackers can easily access ChatGPT accounts and read sensitive conversations. Here’s what you need to know: 🔓 Right now, and since it was launched, you can use TOR to enter ChatGPT credentials, and access accounts without additional verification, despite accessing through a suspicious IP address. 🔒 A year ago, 100,000 ChatGPT accounts were compromised due to infostealer infections. Today, that number has skyrocketed to 850,000. ⚠️ Despite this alarming increase, OpenAI has not enhanced its security measures. Accounts remain vulnerable to attacks. Here are the top 3 methods hackers use to gain access: 1. Infostealer infections generate vast amounts of valid ChatGPT credentials. 2. Login attempts using credentials from previous database breaches. 3. Brute-forcing accounts with weak passwords, facilitated by OpenAI’s lenient password requirements. 🔍 The implications are severe. Hackers can read all your personal and corporate conversations without you knowing. Worse, you won’t receive any notifications of new intrusions, nor is there an option to review recent logins. 🔐 Recommendation: Set up Multi-Factor Authentication (MFA) on your ChatGPT accounts to add an extra layer of security and protect your data from unauthorized access. #CyberSecurity #DataPrivacy #ChatGPT #Infosec

Malicious PowerShell script pushing malware looks AI-written A threat actor 🎭 is using a PowerShell script that was likely created with the help of an artificial intelligence 🤖 system such as OpenAI's ChatGPT, Google's Gemini, or Microsoft's CoPilot 📍 The adversary used the script in an email campaign 📧 in March that targeted tens of organizations in Germany 🇩🇪 to deliver the Rhadamanthys information stealer. Researchers at cybersecurity company Proofpoint attributed the attack to a threat actor 🏴☠️ tracked as TA547, believed to be an initial access broker (IAB). TA547, also known as Scully Spider, has been active since at least 2017 delivering a variety of malware for Windows (ZLoader/Terdot, Gootkit, Ursnif, Corebot, Panda Banker, Atmos) and Android (Mazar Bot, Red Alert) systems. 📍 Recently, the threat actor ☠️ started using the Rhadamanthys modular stealer that constantly expands its data collection capabilities (clipboard, browser, cookies). Proofpoint has been tracking TA547 since 2017 and said that this campaign was the first 😲 one where the threat actor was observed using Rhadamanthys malware. The info stealer has been distributed since September 2022 to multiple cybercrime groups under the malware-as-a-service (MaaS) model. According to Proofpoint researchers, TA547 impersonated the Metro cash-and-carry German brand in a recent email campaign using invoices 🧾 as a lure for “dozens of organizations across various industries in Germany.” 👉🏻Protect your company 👉🏻Train your staff #malware #AI #artificialintelligence #cyberattack #cybercriminals #cybersecurity