Cyber Bits · · 1 min read

Cyber Bits: March 18, 2024

Cyber Bits: March 18, 2024

This week we’ve seen advancement in the AI space, for both good and bad, as well as international organizations identifying email breaches.

More fallout from Microsoft’s January breach

Links: The Hacker News

Surprising absolutely no one, researchers have found malicious third-party GPT’s for ChatGPT’s third-party marketplace. The plugins appear to be taking advantage of several attack vectors client-side, such as prompting for additional dependencies or stealing token access to specific sites.

International Monetary Fund’s emails hacked in attack

Links: Bleeping Computer

The IMF disclosed a cyber incident on Friday, March 15, after several email accounts were breached. Investigations are ongoing but as it stands now, the IMF has found no evidence that additional systems were accessed.

European Union’s AI Act approved

Links: BBC

The EU’s AI Act has been approved, much to the chagrin of AI companies around the world. The Act aims to regulate AI based on potential harm to individuals (insert SkyNet joke here), based on defined risk levels. The EU has also created a dedicated site for individuals to identify how the Act will affect them and what rights they have under the law.

Read next

Cyber Bits: July 8, 2024
Cyber Bits ·

Cyber Bits: July 8, 2024

In this week's Cyber Bits, we look into Cloudflare's BGP incident, a Go-based ransomware variant targeting VMs, Ticketmaster struggling with a ransomware incident, hackers leaking Twilio data, and Cobalt Strike servers being shutdown by the feds.

Cyber Bits: June 24, 2024
Cyber Bits ·

Cyber Bits: June 24, 2024

This week - VMware's urgent security patches, a UEFI vulnerability in Intel PCs, US sanctions on Kaspersky, ransomware attacks on old Android phones, and a breach of 1,590 crypto wallets by North Korean hackers. Stay updated with the latest cybersecurity news and tips.