Posts

Showing posts with the label Cybercriminals

White House Unveils New Cyber Strategy to Reduce Regulation and Go On the Offense Against Cybercriminals

Image
The White House recently published two documents to outline how the US plans to lead the world in cybersecurity while protecting Americans from cybercrime . Combined, the Cyber Strategy for America and the Executive Order on Combating Cybercrime, Fraud, and Predatory Schemes Against American Citizens released on March 6 outline the Administration’s new approach to this important subject. What do businesses need to know about these latest publications and what should you be watching for in the future? Offensive Strategy Outlined in Groundbreaking Document Historically, the national cybersecurity policy has been largely reactive: patching systems, issuing incident reports, and notifying affected individuals upon the event of a cyberattack .  President Trump’s Cyber Strategy for America  focuses on offensive cyber operations to defect criminals before they ever have a chance to breach American networks. The Strategy has six pillars for success. 1. Shape Adversary Behavior:  ...

Threat Actors Exploit Google’s Gemini to Accelerate Cyberattacks

Google Threat Intelligence Group (GTIG)  recently reported that cybercriminals—in particular, state-sponsored threat actors from North Korea, Iran, China, and Russia—are misusing Gemini, Google’s large language model (LLM), to support all stages of their attack lifecycle. Specifically, GTIG observed threat actors using Gemini to code and script tasks, accelerate reconnaissance, research publicly known vulnerabilities, and enable malware development and post-compromise activity. Examples of State-Sponsored Threat Actor’s Use of Gemini GTIG documented several examples of state-backed actors integrating Gemini into their operations, including: North Korea:  GTIG observed the North Korean government-backed group  UNC2970  use Gemini to synthesize open-source intelligence (OSINT ) and profile high-value targets to support campaign planning and reconnaissance. Iran:  The Iranian sponsored actor  APT42  used generative AI models, including Gemini, to search f...

AI-Powered Cyberattacks Are Here: How They Are Supercharging Ransomware Attacks and How You Can Mitigate Them

In today’s landscape of evolving cyber threats, assuming your business is safe is no longer an option – it’s time to take proactive steps to defend against cyberattacks. In the arms race between cyberattacks and organizations defending their IT infrastructures and network systems, malicious actors are compelling businesses to bolster cybersecurity resiliency and vigilance to create a more level playing field. By harnessing the power of artificial intelligence (AI), cybercriminals are beginning to surpass manually generated threats in speed, sophistication and the damage they inflict. The numbers speak for themselves: $10.22 million is the average cost to U.S. companies per cyber breach* Every 39 seconds a cyberattack takes place globally 70% of attackers target small- and medium-sized businesses** 60% of small businesses shut down within six months after a cyberattack As criminal AI applications continue to advance, organizations must ensure that they stay prepared. How AI Is Reshaping...

How cybercriminals are leveraging remote work and artificial intelligence to defraud unsuspecting victims

Cybercriminals continue to outpace the best efforts of regulators, law enforcement, and cybersecurity professionals. Recent reporting from the Federal Bureau of Investigation demonstrates that cybercriminals are increasingly utilizing remote work and artificial intelligence to exploit vulnerable networks, bypass security protocols, and defraud unsuspecting victims .[1] In particular, the FBI reported on a wide-scale scheme involving remote IT professionals, the use of AI to scale already-known schemes, and the continued prevalence of ransomware attacks. Remote Work Fraud Schemes One of the most pressing concerns involves the Democratic People’s Republic of Korea’s (“North Korea”) ongoing effort to sponsor a cyber fraud involving remote IT professionals. In short, North Korean nationals are impersonating U.S. citizens and then applying for remote positions as IT professionals at various U.S. companies. These fake IT professionals are currently targeting Fortune 500 companies, U.S. banks...