Industry News

OpenAI, a leading artificial intelligence (AI) research lab, announced today the launch of a bug bounty program to help address growing cybersecurity risks posed by powerful language models like its own ChatGPT.

The program — run in partnership with the crowdsourced cybersecurity company Bugcrowd — invites independent researchers to report vulnerabilities in OpenAI’s systems in exchange for financial rewards ranging from $200 to $20,000 depending on the severity. OpenAI said the program is part of its “commitment to developing safe and advanced AI.”

Voice-over IP software provider 3CX has confirmed that the recent supply chain attack was tied to North Korea-backed hackers.  

3CX, which says its phone system is used by over 600,000 companies globally, hired Google-owned cybersecurity firm Mandiant to investigate last month’s massive supply chain attack on its Windows and macOS users.  While that investigation remains ongoing, an interim assessment released today bolsters previous assessments that the hackers were North Korean.

China proposed new checks on artificial intelligence chatbots on Tuesday, in an effort to control how its tech industry rolls out generative AI models, as popularized by ChatGPT in the US.

Hours after tech giant Alibaba followed its peers SenseTime and Baidu with the launch of a ChatGPT-like bot, China’s powerful Internet regulator released draft measures likely to slow Alibaba’s rollout, citing chatbots’ potential for “social mobilization.”

Debugging a faulty program can be frustrating, so why not let AI do it for you? That's what a developer that goes by "BioBootloader" did by creating Wolverine, a program that can give Python programs "regenerative healing abilities," reports Hackaday. (Yep, just like the Marvel superhero.)

"Run your scripts with it and when they crash, GPT-4 edits them and explains what went wrong," wrote BioBootloader in a tweet that accompanied a demonstration video. "Even if you have many bugs it'll repeatedly rerun until everything is fixed."

If you’re looking for a new thin-and-light Windows PC this year, the latest and greatest processors may not be all that necessary. Unlike with previous mobile chip releases, the 2023 options for ultralights from Intel and AMD are mostly similar to their predecessors. In the case of premium ultralights and 2-in-1s relying on integrated graphics, the gains are small enough that budget shoppers should consider a last-gen model, assuming all other things are equal, and save hundreds with a negligible loss in performance.

The Feds’ Denver office says charging areas at places like hotels and airports have been commandeered by bad actors. Plugging in to the free-to-use stations may lead to your device becoming infected with malware or monitoring software, the FBI says.

Generative artificial intelligence (AI) is a powerful tool with numerous applications in various fields, including cybersecurity. Generative AI is a type of AI that can create new data, images, or text based on patterns and data it has been trained on. It can also transform how we detect and respond to threats, but only if we understand how to leverage AI correctly.

Now might be a good time to update your password (opens in new tab) to something longer and more complex, as experts have found AI systems areable to crack almost all passwords easily.

Cybersecurity researchers from Home Security Heroes recently fed millions of passwords from RockYou into the PassGAN AI platform to see how fast it could crack them and the results were nothing short of stunning.

At 19:27 Eastern time on April 12, the Ethereum blockchain, home to the world’s second-most-popular cryptocurrency, ether, will finally sever its links to crypto mining. Within the Ethereum bubble, a sense of anticipation is building; some are planning “viewing parties” for the occasion. Codenamed “Shanghai,” the update to Ethereum caps off a process, after “The Merge,” which fundamentally changes the way transactions are verified and the network secured.

A Forcepoint security researcher says he used ChatGPT to develop a zero-day exploit that bypassed detections when uploaded to VirusTotal.

This means that these sophisticated and usually very expensive attacks, primarily the possession of nation-states and APT groups, are now a lot more accessible to any would-be cybercriminal with access to the AI - if they can game the engine to do what's needed.