Connect with us

GRTech

Sophos says it Anticipates AI-Based Attack Techniques and Prepares Detections

Published

on

At the Moment, Adversaries are Skeptical of AI for Cybercrime, According to Sophos Research

Sophos, a global leader in innovating and delivering cybersecurity as a service, has released two reports about the use of AI in cybercrime.

The first report—“The Dark Side of AI: Large-Scale Scam Campaigns Made Possible by Generative AI”—demonstrates how, in the future, scammers could leverage technology like ChatGPT to conduct fraud on a massive scale with minimal technical skills.

However, a second report, titled “Cybercriminals Can’t Agree on GPTs,” found that, despite AI’s potential, rather than embracing large language models (LLMs) like ChatGPT, some cybercriminals are skeptical and even concerned about using AI for their attacks.

The Dark Side of AI

Using a simple e-commerce template and LLM tools like GPT-4, Sophos X-Ops was able to build a fully functioning website with AI-generated images, audio, and product descriptions, as well as a fake Facebook login and fake checkout page to steal users’ login credentials and credit card details.

The website required minimal technical knowledge to create and operate, and, using the same tool, Sophos X-Ops was able to create hundreds of similar websites in minutes with one button.

“It’s natural—and expected—for criminals to turn to new technology for automation. The original creation of spam emails was a critical step in scamming technology because it changed the scale of the playing field. New AIs are poised to do the same; if an AI technology exists that can create complete, automated threats, people will eventually use it. We have already seen the integration of generative AI elements in classic scams, such as AI-generated text or photographs to lure victims.

“However, part of the reason we conducted this research was to get ahead of the criminals. By creating a system for large-scale fraudulent website generation that is more advanced than the tools criminals are currently using, we have a unique opportunity to analyze and prepare for the threat before it proliferates,” said Ben Gelman, senior data scientist, Sophos.

Cybercriminals Can’t Agree on GPTs

For its research into attacker attitudes towards AI, Sophos X-Ops examined four prominent dark web forums for LLM-related discussions. While cybercriminals’ AI use appears to be in its early stages, threat actors on the dark web are discussing its potential when it comes to social engineering.  Sophos X-Ops has already witnessed the use of AI in romance-based, crypto scams.

In addition, Sophos X-Ops found that many posts were related to compromised ChatGPT accounts for sale and “jailbreaks”—ways to circumvent the protections built into LLMs, so cybercriminals can abuse them for malicious purposes. Sophos X-Ops also found ten ChatGPT-derivatives that the creators claimed could be used to launch cyber-attacks and develop malware. However, threat actors had mixed reactions to these derivatives and other malicious applications of LLMs, with many criminals expressing concern that the creators of the ChatGPT imitators were trying to scam them.

“While there’s been significant concern about the abuse of AI and LLMs by cybercriminals since the release of ChatGPT, our research has found that, so far, threat actors are more skeptical than enthused. Across two of the four forums on the dark web we examined, we only found 100 posts on AI. Compare that to cryptocurrency where we found 1,000 posts for the same period.

“We did see some cybercriminals attempting to create malware or attack tools using LLMs, but the results were rudimentary and often met with skepticism from other users. In one case, a threat actor, eager to showcase the potential of ChatGPT inadvertently revealed significant information about his real identity. We even found numerous ‘thought pieces’ about the potential negative effects of AI on society and the ethical implications of its use. In other words, at least for now, it seems that cybercriminals are having the same debates about LLMs as the rest of us,” said Christopher Budd, director, X-Ops research, Sophos.

GrassRoots.ng is on a critical mission; to objectively and honestly represent the voice of ‘grassrooters’ in International, Federal, State and Local Government fora; heralding the achievements of political and other leaders and investors alike, without discrimination. This daily, digital news publication platform serves as the leading source of up-to-date information on how people and events reflect on the global community. The pragmatic articles reflect on the life of the community people, covering news/current affairs, business, technology, culture and fashion, entertainment, sports, State, National and International issues that directly impact the locals.

Business

Meet Kingsley Adonu

Published

on

In the dynamic world of entrepreneurship, there are visionaries who not only navigate the business landscape but redefine it. Meet Kingsley Adonu, the Founder and Chief Executive Officer of the SMobile Group, a conglomerate that stands as a beacon of excellence and diversity in the global business arena.

Kingsley Adonu is a visionary entrepreneur and the Founder of the SMobile Group, a conglomerate synonymous with excellence and diversity. As the Chief Executive Officer, he has steered the group to remarkable heights, overseeing a spectrum of businesses that span across Telecommunications, Oil and Gas, Real Estate, Hospitality, Water Production, Agriculture, Technology, E-commerce, Energy, Sports, Entertainment, Education, Health, Logistics and Financial Services, with branches extending globally to UK, USA, China, South Africa, and Canada.

Under Kingsley’s astute leadership, SMobile Group has emerged as a major partner for MTN, evident in the impactful presence of the SMobile brand in the telecommunications landscape. His strategic insights and forward-thinking approach have positioned the group as a dynamic player in multiple industries.

Beyond the boardroom, Kingsley Adonu is a dedicated philanthropist, committed to making a positive impact in communities. His philanthropic efforts extend beyond business, reflecting a deep-seated belief in the responsibility of successful individuals to contribute meaningfully to society.

Kingsley’s influence is not confined to national borders; he has actively participated in numerous international telecom conferences, further enriching his understanding of global industry trends and fostering valuable connections with industry leaders worldwide.

With an unwavering commitment to excellence, Kingsley Adonu continues to inspire and lead the SMobile Group towards new horizons, blending business acumen with a passion for positive societal change.

Continue Reading

GRTech

SHELT Global Unveils Security Operations Center, Training Academy

Report by SANDRA ANI

Published

on

SHELT GLOBAL PHOTO
Mr. Youssef Abillama, Managing Partner (3rd right); Walid Bou Abssi, country manager of SHELT Cyber Immune Limited (2nd right), in company of business leaders and guests at the unveiling of SHELT Global Limited SOC and training academy in Lagos on February 16, 2024

Training Academy

SHELT Global Limited recently held a cocktail party at its new headquarters in Nigeria to unveil their upgraded Security Operations Center and the SHELT Training Academy.

SHELT has been operating in Nigeria across Lagos and Abuja for six years, serving the country’s leading financial, telecom, and government institutions in their cybersecurity needs.

This headquarters relocation consolidates the determination of SHELT in investing in Nigeria’s economy and in growing cybersecurity talent for the country.

SHELT GLOBAL PHOTO
Mr. Youssef Abillama, managing partner of SHELT Global Limited flanked by the team, at the unveiling of SHELT Global Limited SOC and training academy in Lagos on February 16, 2024

The party was attended by SHELT’s clients and partners, and the guests were taken on a tour of the newly opened premises.

The new SHELT Headquarters boasts a state-of-the-art 24/7 SOC to support the needs of the company’s clients all over Nigeria and the rest of Africa.

SHELT also revealed its Training Academy where young talents and experienced cybersecurity professionals looking to enhance their cybersecurity skills can enroll and benefit from the knowledge and experience of the company’s experts.

SHELT Training Academy will be issuing certifications to students in coordination with international cybersecurity bodies and affiliations.

Mr. Youssef Abillama, Managing Partner of SHELT Global Limited, said: “Our Nigeria offices are quickly turning into the company’s flagship, and we believe the country is playing its part as a role model to the rest of Africa when it comes to cybersecurity regulations. Today, with the launch of this new headquarters and the opening of our Training Academy, we can give back to the community that welcomed us from the start.”

Mr. Walid Bou Abssi, Country Manager of SHELT Cyber Immune Limited, said: “I see so many opportunities ahead of us in the future with the launch of the Academy. We hear of so many people wanting to enter the field of cybersecurity and we will be working hard to support the youth and cybersecurity professionals in their careers.”

Source: Techeconomy

Continue Reading

GRTech

Sophos Expands Commitment to the Channel with New Dedicated Partner Care Offering

By; SANDRA ANI

Published

on

Sophos
  • Partner Care Delivers 24×7 Administrative and Operational Support to Boost Channel Partner Profitability

Sophos, a global leader in innovating and delivering cybersecurity as a service, is expanding its commitment to the channel with the addition of Partner Care, a new offering in its global partner program that features a dedicated, 24×7 team of Sophos experts who handle non-sales related questions and operational support.

The offering is designed to speed up response times for Sophos partners and Managed Service Providers (MSPs) needing assistance with administrative and operational tasks, freeing them up to focus on selling and securing their customers with Sophos’ portfolio of innovative managed services and endpoint, network, email, and cloud security solutions.

“Based on our decades of experience successfully supporting partners who sell to mid-market and small business organizations, we know that administrative and operational issues take away valuable time needed to build customers relationships, pursue prospects and close new business deals,” said Kendra Krause, senior vice president of global channels and small business sales at Sophos. “Partner Care reinforces Sophos’ longstanding strategy to be ‘channel-best,’ which is our commitment to provide partners with optimal, conflict-free revenue and profitability opportunities, curated training and support, and advanced security solutions that defend customers from data breaches, ransomware and other debilitating cyberattacks.”

Sophos Partner Care offers a single point of contact for quoting, navigating the partner portal, addressing licensing queries, Not For Resale (NFR) requests, and more. With this high level of service, partners working with small and mid-market organizations can better boost their productivity and increase profitability.

“Being busy with administration can consume a lot of time and cost, so the idea that Sophos now has a focused Partner Care program and dedicated team to handle it is unbelievably beneficial,” said Richard Wenger, account executive, Point Broadband LLC, a Sophos channel partner based in Alabama. “We are looking forward to the training and enablement of the ‘tool,’ so we can start executing right away. Every bit of time away from the sales cycle is time away from building relationships and being trusted advisors to our customers. This Sophos Partner Care program is essential to my business.”

In addition to Partner Care, Sophos is offering several enhancements to its global partner program, including an additional 5% reward on top of a deal registration discount for partners selling Sophos Managed Detection and Response (MDR). This expires March 31, 2024.

Continue Reading

Trending