Dear Reader,
It’s been three months since the public launch of ChatGPT, the chat interface for Open AI’s large language model GPT3 that has taken the news by storm ever since. Now that the initial hype died down a bit, we figured it’s time for a brief review of what ChatGPT can and cannot do, and the challenges it presents for cyber security.
Don’t trust AI blindly
One of the big surprises following the release of GPT3 itself was Microsoft’s presentation of Bing AI. By integrating GPT3 with Bing, the hope is to provide users with even more useful, comprehensive results. And the presentation looked incredible! However, as pointed out by an AI researcher, it turns out that many of the results returned by Bing AI are simply wrong and, in the worst case, dangerously misleading.
Careful what you feed AI
The fact that ChatGPT is pretty good at writing convincing text and even source code caused headaches at corporate security teams for multiple reasons. One of them being that employees tend to feed it company secrets, among other things. This careless use of the tool has already led to organization banning its use altogether.
Old threats, powered by new technology
Another security challenge related to ChatGPT is, of course, that the convincing text can also be used to take phishing to a whole new level. It may not be an entirely new security threat, but it may become even more difficult to spot. To that end, it’s worth reiterating best practices for identifying phishing messages.
It doesn’t take advanced AI to phish people
Another, even simpler threat, leverages the hype around ChatGPT. As people were scrambling to get access to the tool and toy around with it, scammer abused this curiosity to build fake ChatGPT website that provided malware downloads instead of convincing chat conversations.
Security experts in high demand
No matter if ChatGPT will be used revolutionize the creation of malware or simply to write more convincing phishing emails, there will definitely be no shortage of demand for security experts. Cybersecurity Magazine recently published another career profile featuring Kirsty Paine, in which she shares insights about her role as Strategic Advisor at Splunk, the most challenging and enjoyable parts of her job, and advice on how to get started in this industry.
Cybersecurity Magazine Editorial Team
----------------
The National Cyber Security Show will unite the UK’s approach to tackle cyber threats and make UK businesses resilient and cyber aware. Promoting the core cyber essentials including cyber management, security, protection, and recovery, it is the one stop shop to protect their business from cyber threats.
Gain practical information about the latest products from the country’s foremost manufacturers and suppliers and hear from the UK’s industry-leading experts to gain understanding and awareness of how to protect your business and assets.
National Cyber Security Show is proud to be joined by some of the cyber industry’s biggest and best brands providing outstanding new solutions: Asigra | Chartered Institute of Information Security (CIISec) | Experbuy | Gemserv Limited | IASME | Livesilver Consulting | Maltego Technologies GmbH | Mitigate Cyber Limited | OccamSec | Rights Chain Ltd | Senseon | SoSafe GmbH | TecSec Services Ltd | The Cyber Resilience Centre - West Midlands | Think Cyber Security Limited | Trident Search Ltd | Cyber Crime Unit - West Midlands.
For more information on the National Cyber Security Show, or to register for your free visitor pass, please visit: https://www.nationalcybersecurityshow.com/welcome
-----------------
For our latest video discussion on the security and production systems please see the River Publishers YouTube.
The latest journal articles from River Publishers in all areas of cyber security can be found on the River Publishers website.
https://cybersecurity-magazine.com/
https://www.linkedin.com/showcase/cybersecuritymagazine
@magcybersec
https://www.facebook.com/Cybersecurity-Magazine-100535232117942
