More ChatGPT đ || Malware via Google Ads
CyberInsights #77 - It's still ChatGPT & the traditional attack vectors still continue
Itâs still ChatGPT
The world cannot seem to stop talking about ChatGPT. Thereâs good reason for it.
I read this tweet and, like itâs author, paused. ChatGPT is scary.
It reminded me of the famous quote by Arthur C. Clarke
Any sufficiently advanced technology is indistinguishable from magic - Arthur C. Clarke
Meanwhile, Microsoft has decided to start offering AI as a part of their cloud services.
Hackers have started using ChatGPT for evil.
Meanwhile, researchers have started thinking about the threat models from ChatGPT like AIs.
Here is a screenshot from the paper âMachine Generated Text: A Comprehensive Survey of Threat Models and Detection Methodsâ by EVAN CROTHERS, NATHALIE JAPKOWICZ, and HERNA VIKTOR structuring threat models for ChatGPT
Take Action:
This is still wait and watch. I have mentioned some actions in the previous CyberInsights.
Google Ads â the new malware spreader?
More people than you think click on ads. Malware peddlers buy ads.
What is the best way to grow your online business? Google Ads? Cyber criminals are using Google ads to, er, grow their business.
Hackers are using Google Ads to mimic popular free or open source software like AnyDesk, Zoom, Notepad ++, etc.
This is an attack vector that is growing in the past few months and is worth considering.
Take Action:
Update your cybersecurity awareness programs to include being aware of clicking on Google Ads
If your organisation business model is driven by ad revenue, (websites, apps, games, etc.), keep an eye on these assets and report any ads that appear to be phishing assets