- Project Overwatch
- Posts
- #022 - Cyber AI Chronicle - Visualizing Cyber Threats with AI
#022 - Cyber AI Chronicle - Visualizing Cyber Threats with AI
PRESENTED BY
Cyber AI Chronicle
By Simon Ganiere · 2nd June 2024
Welcome back!
Project Overwatch is a cutting-edge newsletter at the intersection of cybersecurity, AI, technology, and resilience, designed to navigate the complexities of our rapidly evolving digital landscape. It delivers insightful analysis and actionable intelligence, empowering you to stay ahead in a world where staying informed is not just an option, but a necessity.
Table of Contents
What I learned this week
TL;DR
This week cyber security headline is brought to you by Snowflake! The situation is still complicated and evovling but looks like it’s already having some significant impact as it seems to be link to some data breaches at Santander and Ticketmaster. I decided to leverage some magic prompts to generate a visualisation summary and a timeline of the key dates and events. The ability of a model like ChatGPT (and others) to generate an output in a specific format is often overlooked. In this case, I’m showing example of how to use it with markmap and mermaid.js format to generate visualisation and timeline » MORE
On my rant on Microsoft Recall last week which increase the attack surface. Highly recommend to read Kevin Beaumont latest post on it as well. The other scenario that didn’t hit me last week is BYOD. If your employee use Recall and connect via remote access to a VDI to do work…all of your DLP controls are just bypassed and how do you deal with an employee leaving? Yes, you can exclude an application as per the FAQ but you need a way to enforce this. A lot of company do not control fully the BYOD devices to enforce configuration. This is going to be really interesting.
OpenAI published their work to disrupt covert operations that were leveraging ChatGPT. Not a big surprise to see that if i’m being honest but i’m wondering if this is not going to give us a glimpse of the future. Both in terms of disinformation but also in terms of what the future of detection and response looks like » MORE
Check out the article from Bessemer Venture Partners on the trends on the cyber security markets. There are a couple of really interesting points in this article and not the least about the consolidation and “platforming” we are observing » MORE
I have continued to develop my little ArXiv project from a couple of weeks ago. As I mentioned, not a developer, but doing pair programming with ChatGPT is just so cool 😎 Assuming you have some basic understanding of programming to cross-check what’s going on, it’s absolutely amazing. I was able to add several key features in a couple of hours when it would have taken me days before. Such features include refactoring the summary page, adding paging, add some extra fields like published date, better search filter, loading overlay, etc. simply amazing! I’m now thinking about expanding this to over sources such as some RSS feeds or website of reference.
Oh and well Google had to do something about the AI search overview situation 😆 Whilst this is all fun it shows as well that adoption of AI is not easy and should not be taken lightly by companies as the price of fixing your reputation is probably higher than you think.