The Cyber Defense eMagazine November Edition for 2023

More documents

Recommendations

Info

Artificial Intelligence or Mechanical Turk? Walking the show floor at Black Hat, most vendors were pitching some sort of AI that would “revolutionize” defense. I found some of these messages deceptive themselves, making promises the industry has heard for years only to disappear into vaporware and disappointment. The advances in machine learning (ML) and large language models (LLM) have been very promising over the past few years, although still a bit overhyped as “AI” when in reality, these technologies require reliable data inputs, along with ongoing human tuning and supervision. Machine learning models are only as good as the data they are fed. As any data scientist will tell you, the majority of their job is data prep and cleansing, this also makes these models themselves susceptible to deception through data poisoning and model manipulation. The application of LLM through tools such as ChatGPT has been a fantastic breakthrough in the application of data science, with the promise of increasing productivity across many different industries. LLM, however, is a machine learning model that uses Natural Language Processing (NLP) to scan massive amounts of text. Some companies have been deceptive about how this technology works, confusing the industry. Although LLM technology can magically create content from a prompt out of thin air, there is more to it than meets the eye. LLMs rely on data inputs like any other model, so they leverage existing works, whether articles, blog posts, art, or even code. So there should be no surprise that there are now mass lawsuits against companies like ChatGPT from content creators claiming copyright infringement and source code is no different, not to mention privacy implications. LLM also has another negative side effect of “hallucinations” where it will spit out nonsense or untrue content that could trick or confuse a person if they believe the content, which shows why even some of the most advanced uses of “AI” require a human in the loop to verify content. Interestingly, we can be deceived by this technology by accident; however, the same technology can and is being used offensively to manipulate data models and people and, in many respects, is ahead of the defense. Generative Deception At Def Con I saw the other side of “AI” on the offensive side. Both the Social Engineering and Misinformation Villages have grown over the years. The Social Engineering CTF was amazing to watch as teams targeted employees at companies to see how they could gather valuable information from targets for reconnaissance. This can now be taken a step further to manipulate people using voice synthesis to mimic the voice of an authority figure, family member, or celebrity, for example, to gain the target's trust. The increasingly widespread use of this technology will pose a significant threat to organizations and individuals, mainly as many non-tech-savvy folks are unaware of it, and the models become increasingly convincing. In addition, the use of generative AI to create videos and images that are progressively realistic is already finding its way into propaganda, fraud, and social engineering at a horrifying rate, and most security awareness training programs and other defenses for these types of attacks are slow to catch up. Cyber Defense eMagazine – November 2023 Edition 22 Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.
Human-in-the-Middle In creating AI tools to make us more productive and creative, we also opened a Pandora’s Box, as these same tools can be used to deceive us. I presented a while back at the SANS Data Science Lightning Summit “Cyborgs vs. Androids” on this topic, where I discussed the successful use of AI technology should be thought of less as an autonomous entity that will replace the security analyst/engineer and more like a cyborg, where we leverage these technologies to enhance the security analyst/engineer. Organizations also need to consider the potential liability of using some of these tools, given the technology is new, questions about data provenance, and potential legislation regarding their use. By keeping the human in the center, we are better able to harness the power of AI while at the same time ensuring it has the proper inputs and monitoring of its outputs. Trained humans are still better than machines at identifying patterns and detecting human deception; the challenge is that they are overwhelmed with data, tooling, and threats. The more we can leverage AI to enhance the analysts' capabilities to make their jobs easier, the better we will defend against a whole new generation of threats — or maybe this post was written by an AI to convince you that’s the case ;-). About the Author Ken Westin is Field CISO of Panther Labs. He has been in the cybersecurity field for over 15 years working with companies to improve their security posture, through detection engineering, threat hunting, insider threat programs, and vulnerability research. In the past, he has worked closely with law enforcement helping to unveil organized crime groups. His work has been featured in Wired, Forbes, New York Times, Good Morning America, and others, and is regularly reached out to as an expert in cybersecurity, cybercrime, and surveillance. Ken can be reached online at LinkedIn (https://www.linkedin.com/in/kwestin/) and at our company website https://panther.com/ Cyber Defense eMagazine – November 2023 Edition 23 Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: Artificial Deception: The State Of
Page 3 and 4: OT Cybersecurity: Safeguarding Buil
Page 5 and 6: The Crumbling Castle --------------
Page 7 and 8: @CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 9 and 10: Cyber Defense eMagazine - November
Page 21: Artificial Deception: The State Of
Page 25 and 26: effectiveness of defenses in place
Page 27 and 28: this information and related activi
Page 29 and 30: leading to the potential exploit of
Page 31 and 32: An Age-by-Age Guide to Online Safet
Page 33 and 34: Educate: It’s never too early to
Page 35 and 36: About the Author Chelsea Hopkins is
Page 37 and 38: Securing Infrastructure Against Bre
Page 39 and 40: AI And Ad Fraud: Growing Risks for
Page 41 and 42: enable organisations to make better
Page 43 and 44: Bolster an Organizational Cybersecu
Page 45 and 46: in EDP in addition to regular cyber
Page 47 and 48: prioritize a Secure Software Develo
Page 49 and 50: 6. Deployment: Once the software ha
Page 51 and 52: Beyond Passwords: AI-Enhanced Authe
Page 53 and 54: 3. Improving the Defensive Cybersec
Page 55 and 56: 7 Steps to Build a Defense in Depth
Page 57 and 58: The same risks associated with USB
Page 59 and 60: About the Author Mr. Spears has ove
Page 61 and 62: As Zombie APIs are essentially forg
Page 63 and 64: How To Combat the Mounting ‘Hackt
Page 65 and 66: y pro-Russia hacktivists. These hav
Page 67 and 68: Unlike IT cybersecurity attacks, wh
Page 69 and 70: The Cyber Risk Nightmare and Financ
Page 71 and 72: fell -11.3%, and underperformed the
Page 73 and 74:
DevOps’ Big Challenge: Limiting R
Page 75 and 76:
By making this single alteration to
Page 77 and 78:
ChatGPT For Enterprises Is Here - B
Page 79 and 80:
usiness email communication, data s
Page 81 and 82:
Chromecast End-of-Life Announcement
Page 83 and 84:
Going beyond awareness and fosterin
Page 85 and 86:
But the most crucial innovations ha
Page 87 and 88:
About the Author Vinaya is a highly
Page 89 and 90:
card transactions often comprise a
Page 91 and 92:
About the author Stefan Auerbach, C
Page 93 and 94:
Consider the following data and rea
Page 95 and 96:
4. Create a digital estate plan. Th
Page 97 and 98:
do untold damage to a company’s r
Page 99 and 100:
About the Author Sean Newman is the
Page 101 and 102:
eing monitored to protect against m
Page 103 and 104:
Developers Hold the New Crown Jewel
Page 105 and 106:
the fact that many organizations la
Page 107 and 108:
Expect to Fail: How Organizations C
Page 109 and 110:
The more personnel that you train t
Page 111 and 112:
How to Create a Threat Hunting Prog
Page 113 and 114:
5. Decide Whether to Automate Altho
Page 115 and 116:
How To Improve Security Capacities
Page 117 and 118:
eing noticed in a practice and some
Page 119 and 120:
In Pursuit of a Passwordless Future
Page 121 and 122:
than to guess their password, but i
Page 123 and 124:
configurable data privacy. These bu
Page 125 and 126:
It’s Time to Tear Down the Barrie
Page 127 and 128:
Is it Time to Re-evaluate Your Thre
Page 129 and 130:
Building For a More Secure Future:
Page 131 and 132:
OAuth 1.0 to OAuth 2.0, or increasi
Page 133 and 134:
About the Author Jeremy Butteriss a
Page 135 and 136:
which helped feed the development o
Page 137 and 138:
Protecting Your Business and Person
Page 139 and 140:
Mitigating Phishing with Domain Nam
Page 141 and 142:
About the Author Brian Lonergan, VP
Page 143 and 144:
adoption is more than just an IT tr
Page 145 and 146:
North Korea-Russia Summit A new all
Page 147 and 148:
factors on both sides of the confli
Page 149 and 150:
That being said, the Russian regime
Page 151 and 152:
Protecting Critical Infrastructure
Page 153 and 154:
spared from the wrath of Russian ha
Page 155 and 156:
About the Author Richard Staynings
Page 157 and 158:
The Illusion of Ruthless Prioritiza
Page 159 and 160:
Ditch the Worry - Switch to Secure
Page 161 and 162:
others are continuing to increase a
Page 163 and 164:
Shifting Left Means Shifting Smart:
Page 165 and 166:
triggers to allow for a more standa
Page 167 and 168:
• The Rise of Remote Work: The CO
Page 169 and 170:
About the Author Jaye Tillson is a
Page 171 and 172:
In terms of prioritization, out of
Page 173 and 174:
Three Things to Know About the New
Page 175 and 176:
For example, if a security leader n
Page 177 and 178:
Cloud adoption has witnessed a sign
Page 179 and 180:
The Tech Jobs That AI Will Not Disr
Page 181 and 182:
Examples of tech jobs that will sur
Page 183 and 184:
Cyber Defense eMagazine - November
Page 185 and 186:
Page 187 and 188:
Page 189 and 190:
Page 191 and 192:
Free Monthly Cyber Defense eMagazin
Page 193 and 194:
Page 195 and 196:
show all

The Cyber Defense eMagazine November Edition for 2023

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?