ESET Analysis
An AI chatbot inadvertently kindles a cybercrime growth, ransomware bandits plunder organizations with out deploying ransomware, and a brand new botnet enslaves Android TV containers
31 Jan 2024
•
,
2 min. learn
On this episode of the ESET Analysis Podcast, we dissect essentially the most attention-grabbing findings of the ESET Menace Report H2 2023, together with risk actors attempting to leverage the AI hype, in all probability the most important cyber incident seen in the entire 12 months, and a brand new risk lurking within the Android and IoT house.
The fast development of AI chatbots equivalent to ChatGPT has triggered a parallel surge in cybercrime. Blocking over 675,000 makes an attempt in 2023 to entry malicious domains imitating this standard chatbot signifies that cybercriminals have discovered fertile floor.
A few of these domains pose as bring-your-own-key internet apps, requiring customers to share their OpenAI API keys. However these apps might steal the keys, resulting in surprising costs for using the API. To forestall this, it’s essential to by no means share your API key.
The cybercrime panorama isn’t restricted to AI fanatics. The Cl0p ransomware group carried out an enormous assault earlier this 12 months by exploiting a zero-day vulnerability within the MOVEit switch software program. Over 2,600 organizations have been affected, with the estimated monetary harm reaching a staggering $14 billion. Cl0p leaked the stolen data by way of the darkish internet, torrents, and the clear internet, intensifying strain on the victims.
In the meantime, the IoT world grappled with its personal share of points. In 2023, the Pandora botnet emerged, compromising Android gadgets, significantly Android TV containers. This malware, primarily based on the leaked supply code of Mirai malware, might be delivered via malicious firmware updates or via apps providing pirated content material.
Within the face of those cyberthreats, customers should train warning when downloading apps, significantly these promising free content material. Protecting gadgets up to date and utilizing respected safety options provide a vital layer of safety in opposition to cybercrime.
For all these subjects and extra from the ESET Menace Report, hearken to the newest episode of the ESET Analysis podcast, hosted by Aryeh Goretsky. This time, he directed his inquiries to one of many authors of the report, Safety Consciousness Specialist René Holt.
For the total report from H2 2023, together with different subjects equivalent to a brand new Android spyware and adware household, an replace on the demise of the Mozi botnet, the rise of the cryptostealer Lumma Stealer, and the newest developments within the Magecart scene, learn the total report right here.
Mentioned:
- ChatGPT 1:07
- MOVEit hack 5:46
- Pandora botnet 8:57
