ESET Analysis
An AI chatbot inadvertently kindles a cybercrime growth, ransomware bandits plunder organizations with out deploying ransomware, and a brand new botnet enslaves Android TV bins
31 Jan 2024
•
,
2 min. learn
On this episode of the ESET Analysis Podcast, we dissect probably the most fascinating findings of the ESET Menace Report H2 2023, together with risk actors making an attempt to leverage the AI hype, in all probability the largest cyber incident seen in the entire 12 months, and a brand new risk lurking within the Android and IoT house.
The speedy progress of AI chatbots reminiscent of ChatGPT has triggered a parallel surge in cybercrime. Blocking over 675,000 makes an attempt in 2023 to entry malicious domains imitating this fashionable chatbot signifies that cybercriminals have discovered fertile floor.
A few of these domains pose as bring-your-own-key internet apps, requiring customers to share their OpenAI API keys. However these apps might steal the keys, resulting in surprising prices for the usage of the API. To stop this, it’s essential to by no means share your API key.
The cybercrime panorama isn’t restricted to AI lovers. The Cl0p ransomware group carried out a large assault earlier this 12 months by exploiting a zero-day vulnerability within the MOVEit switch software program. Over 2,600 organizations have been affected, with the estimated monetary harm reaching a staggering $14 billion. Cl0p leaked the stolen info by way of the darkish internet, torrents, and the clear internet, intensifying stress on the victims.
In the meantime, the IoT world grappled with its personal share of points. In 2023, the Pandora botnet emerged, compromising Android gadgets, significantly Android TV bins. This malware, based mostly on the leaked supply code of Mirai malware, may be delivered by malicious firmware updates or by apps providing pirated content material.
Within the face of those cyberthreats, customers should train warning when downloading apps, significantly these promising free content material. Protecting gadgets up to date and utilizing respected safety options provide a vital layer of safety towards cybercrime.
For all these matters and extra from the ESET Menace Report, take heed to the newest episode of the ESET Analysis podcast, hosted by Aryeh Goretsky. This time, he directed his inquiries to one of many authors of the report, Safety Consciousness Specialist René Holt.
For the total report from H2 2023, together with different matters reminiscent of a brand new Android spy ware household, an replace on the demise of the Mozi botnet, the rise of the cryptostealer Lumma Stealer, and the newest developments within the Magecart scene, learn the total report right here.
Mentioned:
- ChatGPT 1:07
- MOVEit hack 5:46
- Pandora botnet 8:57