ESET Analysis
An AI chatbot inadvertently kindles a cybercrime increase, ransomware bandits plunder organizations with out deploying ransomware, and a brand new botnet enslaves Android TV bins
31 Jan 2024
•
,
2 min. learn
On this episode of the ESET Analysis Podcast, we dissect essentially the most attention-grabbing findings of the ESET Menace Report H2 2023, together with menace actors attempting to leverage the AI hype, in all probability the largest cyber incident seen in the entire yr, and a brand new menace lurking within the Android and IoT area.
The speedy development of AI chatbots corresponding to ChatGPT has triggered a parallel surge in cybercrime. Blocking over 675,000 makes an attempt in 2023 to entry malicious domains imitating this well-liked chatbot signifies that cybercriminals have discovered fertile floor.
A few of these domains pose as bring-your-own-key net apps, requiring customers to share their OpenAI API keys. However these apps might steal the keys, resulting in surprising expenses for using the API. To stop this, it’s essential to by no means share your API key.
The cybercrime panorama isn’t restricted to AI fanatics. The Cl0p ransomware group carried out a large assault earlier this yr by exploiting a zero-day vulnerability within the MOVEit switch software program. Over 2,600 organizations had been affected, with the estimated monetary injury reaching a staggering $14 billion. Cl0p leaked the stolen data by way of the darkish net, torrents, and the clear net, intensifying strain on the victims.
In the meantime, the IoT world grappled with its personal share of points. In 2023, the Pandora botnet emerged, compromising Android units, notably Android TV bins. This malware, based mostly on the leaked supply code of Mirai malware, may be delivered by malicious firmware updates or by apps providing pirated content material.
Within the face of those cyberthreats, customers should train warning when downloading apps, notably these promising free content material. Preserving units up to date and utilizing respected safety options provide a vital layer of safety towards cybercrime.
For all these matters and extra from the ESET Menace Report, take heed to the newest episode of the ESET Analysis podcast, hosted by Aryeh Goretsky. This time, he directed his inquiries to one of many authors of the report, Safety Consciousness Specialist René Holt.
For the complete report from H2 2023, together with different matters corresponding to a brand new Android adware household, an replace on the demise of the Mozi botnet, the rise of the cryptostealer Lumma Stealer, and the newest developments within the Magecart scene, learn the complete report here.
Mentioned:
- ChatGPT 1:07
- MOVEit hack 5:46
- Pandora botnet 8:57
