A discussion on the security risks of new AI browsers like ChatGPT Atlas, the rise of malware distribution through trusted platforms like YouTube, the emergence of "post-infrastructure" malware like GlassWorm, corporate negligence in mobile security, and the critical lessons in resiliency from the recent AWS outage.
Experts discuss the security implications of Windows 10's end-of-life, the transformative but cautious integration of AI into Security Operations Centers (SOCs), the promise and peril of AI-driven automated code repair, and the ongoing battle against social engineering attacks like payroll fraud.
A deep dive into the human side of cybersecurity, exploring the motivations of bad actors, the evolution of social engineering in the age of AI, and the defensive strategies being developed. The discussion covers the move beyond passwords with passkeys and risk-based authentication, and confronts the complex security and privacy challenges introduced by autonomous agents.
A discussion on novel methods for hijacking AI agents through social engineering, the evolution of DDoS attacks, the legacy of Zero Trust, and the glaring security flaws in AI training data apps.
Panelists debate the likelihood of an "AI vulnerability cataclysm", discussing whether AI will overwhelm defenses or if it's an arms race where both attackers and defenders level up. The discussion covers the return of threat group Scattered Spider using AI-powered vishing, the persistent and significant risks of cloud misconfigurations, the emergence of firmware-level ransomware like HybridPetya, and the importance of focusing on security fundamentals and user education over punitive rules.
Experts from IBM X-Force discuss the alleged retirement of the Scattered Lapsus$ Hunters cybercrime gang, the ethics and implications of AI-powered ransomware, critical software supply chain vulnerabilities exposed by the recent npm hack, growing threats to Operational Technology (OT), and the emergence of AI-driven hiring fraud.