Well He's Not Wrong

This is our CINS Army Brief for May 2023, curating the most interesting cyber news from the previous month. Learn more and subscribe here.

• Two-thirds of all 2022 breaches resulted from spear phishing
  https://www.computerweekly.com/news/366538394/Two-thirds-of-all-2022-breaches-due-to-spear-phishing
• New hyperactive phishing campaign uses SuperMailer templates: Report
  https://www.csoonline.com/article/3697311/new-hyperactive-phishing-campaign-uses-supermailer-templates-report.html
• Phishing campaign targets ChatGPT users
  https://www.helpnetsecurity.com/2023/05/25/chatgpt-phishing/
• 3 Ways Hackers Use ChatGPT to Cause Security Headaches
  https://www.darkreading.com/vulnerabilities-threats/3-ways-hackers-use-chatgpt-to-cause-security-headaches
• Why We Should Establish Guardrails For Artificial General Intelligence Now
  https://www.forbes.com/sites/forbestechcouncil/2023/05/01/why-we-should-establish-guardrails-for-artificial-general-intelligence-now/?sh=28ec28312ad5
• Make them pay: Hackers devise new tactics to ensure ransomware payment
  https://www.csoonline.com/article/3696168/make-them-pay-hackers-devise-new-tactics-to-ensure-ransomware-payment.html
• Anatomy of a Malicious Package Attack
  https://www.darkreading.com/vulnerabilities-threats/anatomy-of-a-malicious-package-attack
• ‘Volt Typhoon’ China-Backed APT Infiltrates US Critical Infrastructure Orgs
  https://www.darkreading.com/endpoint/-volt-typhoon-china-backed-apt-infiltrates-us-critical-infrastructure
• Microsoft: BEC Attackers Evade ‘Impossible Travel’ Flags With Residential IP Addresses
  https://www.darkreading.com/endpoint/microsoft-bec-attackers-evade-impossible-travel-residential-ip-addresses
• These medical IoT devices carry the biggest security risks
  https://www.zdnet.com/article/these-medical-iot-devices-carry-biggest-security-risks/
• Three Ways Organizations Can Mitigate The Insider Threat Conundrum
  https://www.forbes.com/sites/forbestechcouncil/2023/05/02/three-ways-organizations-can-mitigate-the-insider-threat-conundrum/?sh=612ad32b26e8
• Is misinformation the newest malware?
  https://www.csoonline.com/article/3695014/is-misinformation-the-newest-malware.html
• 5 ways AI-driven patch management is driving the future of cybersecurity
  https://venturebeat.com/security/5-ways-ai-driven-patch-management-is-driving-the-future-of-cybersecurity/
• Is human threat hunting a fool’s errand?
  https://www.helpnetsecurity.com/2023/05/15/automated-threat-hunting-processes/
• Three ways to leverage cyberpsychology to prevent attacks
  https://www.scmagazine.com/perspective/emerging-technology/three-ways-to-leverage-cyberpsychology-to-prevent-attacks
• You Must Look Beyond AI To Stay Ahead Of Today’s Cybersecurity Threats
  https://www.forbes.com/sites/forbestechcouncil/2023/05/05/you-must-look-beyond-ai-to-stay-ahead-of-todays-cybersecurity-threats/?sh=65a8f53c31c3
• New Generative AI Tools Aim to Improve Security
  https://www.darkreading.com/emerging-tech/new-generative-ai-tools-aim-to-improve-security
• The government is very hackable, and they have your data
  https://www.engadget.com/the-government-is-very-hackable-and-they-have-your-data-163034576.html
• Why the Things You Don’t Know about the Dark Web May Be Your Biggest Cybersecurity Threat
  https://thehackernews.com/2023/05/why-things-you-dont-know-about-dark-web.html
• Bridgestone CISO: Lessons From Ransomware Attack Include Acting, Not Thinking
  https://www.darkreading.com/ics-ot/bridgestone-ciso-lessons-ransomware-attack-acting-thinking
• Talking Security Strategy: Cybersecurity Has a Seat at the Boardroom Table
  https://www.darkreading.com/vulnerabilities-threats/talking-security-strategy-cybersecurity-has-a-seat-at-the-boardroom-table
• Cybersecurity Leaders Suffer Burnout as Pressures of the Job Intensify
  https://www.wsj.com/articles/cybersecurity-leaders-suffer-burnout-as-pressures-of-the-job-intensify-b0609ef1

‍