Tag Archive for: POWERING

How AI is powering the next-generation of cybercriminals

/in


The pace of artificial intelligence (AI) adoption by businesses is increasing. However, the technology is also being rapidly embraced by cybercriminals.

Keen to improve the effectiveness of their malicious attacks, cybercriminals are using AI tools in a range of innovative ways to make attacks both more effective and less obvious to detect.

Creating malware and phishing messages

It’s clear that cybercriminals are already making use of generative AI tools to improve the success rates of their attacks. Some are creating new types of malware without the need for sophisticated coding skills.

In some cases, ChatGPT is being used to mutate malware code, allowing it to evade endpoint detection and response (EDR) systems. As a result, major AI service providers have now put in place filters that prevent users from directing them to write malware and assist with other malicious activity.

However, generative AI services such as ChatGPT can still be tricked into writing attack tools. If someone asks ChatGPT to write a script to test their company’s servers for a specific vulnerability, it may comply. Attackers could use a similar tactic to generate code.

Aside from the well-known generative AI tools, cybercriminals also have access to several other AI applications available on the dark web – for a price. One example is WormGPT, which has been described as being like ChatGPT but with no ethical boundaries. These types of tools have no guardrails in place to prevent cybercriminals from using them to write effective malware code and other hostile tools. 

There is also evidence that attackers are using generative AI to automate the task of writing phishing emails and smishing texts. Previously, these have tended to be relatively easy to spot as they often contain poor grammar and misspellings. Now, with AI, attackers can generate highly personalised phishing emails and fraudulent SMS messages using text that seems to be more genuine. As a result, the number of messages that are opened by recipients is likely to increase.

Thankfully, as with the creation of malware, commonly used AI tools such as ChatGPT and Google Bard will decline to write phishing emails. However, attackers…

Source…

Qualcomm dives into handheld gaming, powering new device in partnership with Razer

/in


What new bells and whistles might be coming to top-tier Android smartphones next year?

Qualcomm, whose mobile processors power some 2 billion handsets worldwide, gave a few hints this week at its annual Snapdragon Summit in Hawaii.

The San Diego company introduced technologies that deliver faster 5G and Wi-Fi, crisper photos, always-on cameras and CD-quality “lossless” Bluetooth audio, among other things.

It also added a few surprises, including a standalone mobile gaming device and a revamped branding campaign that seeks to make the Snapdragon name as well-known as “Intel Inside.”

Here are a few things to know about this week’s event.

Gonzo gaming

There are 2.5 billion mobile gamers worldwide, and they spend a lot of money on their preferred entertainment. Qualcomm estimates the amount at $90 billion to $120 billion a year.

The company has long touted its sharp graphics and fast processing for gamers on smartphones. Now it’s working with gaming hardware outfit Razer on a standalone, handheld gaming device. which includes a cooling fan for better performance.

Qualcomm isn’t making any devices. It’s simply providing a design template to enable electronics makers to more easily roll out gaming devices based on Qualcomm’s new Snapdragon G3x Gaming Platform.

“Let’s say you are connected to a 5G network, and you’re doing multi-player gaming,” said Alex Katouzian, senior vice president of mobile, compute and infrastructure at Qualcomm. “That is when immersive audio is very important. The fan is very important because now you can push the envelope of performance to a higher level. You can attach to a TV. Fast charging capability is on there as well.”

5G, cameras, AI and security

For smartphones, Qualcomm’s latest Snapdragon 8 Gen 1 processor can theoretically reach 10-gigabit per second download speeds — though that’s unlikely in real life because of network congestion and other things. Still, it’s faster than Qualcomm’s earlier generations of 5G processors.

Snapdragon 8 Gen 1 also delivers the fastest version of Wi-Fi, which reaches 3.7 gigabits per second.

Its artificial intelligence engines help power natural language processing, the scanning of documents…

Source…

BlackBerry resisted announcing major flaw in software powering cars, hospital equipment

/in


The back-and-forth between BlackBerry and the government highlights a major difficulty in fending off cyberattacks on increasingly internet-connected devices ranging from robotic vacuum cleaners to wastewater-plant management systems. When companies such as BlackBerry sell their software to equipment manufacturers, they rarely provide detailed records of the code that goes into the software — leaving hardware makers, their customers and the government in the dark about where the biggest risks lie.

BlackBerry may be best known for making old-school smartphones beloved for their manual keyboards, but in recent years it has become a major supplier of software for industrial equipment, including QNX, which powers everything from factory machinery and medical devices to rail equipment and components on the International Space Station. BadAlloc could give hackers a backdoor into many of these devices, allowing bad actors to commandeer them or disrupt their operations.

Microsoft security researchers announced in April that they’d discovered the vulnerability and found it in a number of companies’ operating systems and software. In May, many of those companies worked with the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency to publicly reveal the flaws and urge users to patch their devices.

BlackBerry wasn’t among them.

Privately, BlackBerry representatives told CISA earlier this year that they didn’t believe BadAlloc had impacted their products, even though CISA had concluded that it did, according to the two people, both of whom spoke anonymously because they were not authorized to discuss the matter publicly. Over the last few months, CISA pushed BlackBerry to accept the bad news, eventually getting them to acknowledge the vulnerability existed.

Then BlackBerry said it didn’t intend to go public to deal with the problem. The company told CISA it planned to reach out privately to its direct customers and warn them about the QNX issue.

Technology companies sometimes prefer private vulnerability disclosures because doing so doesn’t tip off hackers that patching is underway — but also because it limits (or at least delays) any resulting…

Source…