💡

"Gives me everything I need to be informed about a topic" - __UK.Gov__

Table of Contents

1. Beware the Big Game: Myths and Perils of Ransomware

2. Fraggle Attacks: The Lesser-Known Cyber Threat You Should Fear

3. "SCAM" Is a Four-Letter Word: BreachForums Edition

4. Cyber Heists Target UK Retailers: When Shopping Sprees Go Digital

5. SonicBoom or Just Boom? SonicWall SMA Vulnerabilities in the Wild

6. The Robots Are Coming: AI, Cybercrime, and You

Sign up for CISO Intelligence.

21st century industry insights for the modern CISO

It won't hurt, I promise.

Email sent! Check your inbox to complete your signup.

No spam. Unsubscribe anytime.

Beware the Big Game: Myths and Perils of Ransomware

_"Ransomware: The high-stakes cyber poker where the house always wins."_

What You Need to Know

Ransomware remains a significant threat to organizations across industries. In particular, "big game" ransomware targets large enterprises with the ability to pay substantial ransoms. As a board executive, it is critical to understand the myths surrounding ransomware attacks and develop robust strategies to protect your organization. You are expected to implement comprehensive cybersecurity measures, invest in employee training, and foster a security-centric organizational culture.

CISO focus: Ransomware and Enterprise Threat Management

Sentiment: Negative

Time to Impact: Immediate

*

The Myths and Realities of Big Game Ransomware

In the landscape of cybersecurity threats, ransomware, particularly targeted attacks on large enterprises known as "big game hunting," has become a substantial concern. These high-stakes cyber threats are characterized by their strategic aim at high-value targets that are seen as more likely to pay significant ransoms. Debunking myths about this type of ransomware is crucial for organizations aiming to shield themselves from potential digital calamity.

Myth 1: My Business Isn't a Target

A prevalent misunderstanding is that only tech giants or financial institutions are susceptible to ransomware. However, 2023 has shown us that attackers appreciate diversity. Healthcare, education, and even mid-sized firms are being preyed upon, proving that anyone is a potential target if they are perceived as capable of paying the ransom.

Reality Check: No business is too obscure to be targeted. Cybercriminals employ advanced reconnaissance to identify vulnerabilities in companies of all sizes.

Myth 2: Paying the Ransom Guarantees Data Recovery

Many companies assume that paying the ransom is synonymous with regaining access to encrypted data. This belief is rooted in the misconception that cybercriminals operate on some form of perverse honor code.

Reality Check: Payment does not guarantee data recovery. Various reports, such as those from the Cybersecurity and Infrastructure Security Agency, note that even after payment, some victims never receive decryption keys, or if they do, the decryptors are faulty.

Myth 3: Insurance Will Cover Everything

Some organizations lean heavily on cybersecurity insurance, assuming these policies will alleviate the financial burden of an attack. While cyber insurance can be a vital part of a security plan, relying solely on it is ill-advised.

Reality Check: Insurers have become more cautious, with numerous policies featuring exclusions for certain types of attacks or requiring proof of preventative measures. As understanding and underwriting evolve, companies may face limited payout scopes or increased premiums.

Protect with Proactive Measures

Organizations need to shift from a reactive to a proactive approach in dealing with the looming threat of ransomware. This entails adopting a multi-layered security strategy involving:

Data Backups: Regular, secure, and offline backups mitigate the leverage cybercriminals have, reducing dependency on paying for decryption.

Employee Training: Equipping staff with sufficient knowledge about phishing and social engineering can drastically decrease the probability of initial infiltration.

Incident Response Plans: Have a robust incident response strategy that is routinely tested for effectiveness during simulated ransomware attacks.

Managing Vendor Risks

Effective collaboration with vendors is paramount in maintaining an airtight security posture.

Questions for Vendor Diligence

1. How do you ensure third-party software updates don't introduce vulnerabilities?

2. Can you provide evidence of a comprehensive pentesting regimen applied to your systems?

3. In the event of a breach, what is your immediate response plan, and can you guarantee transparency with clients?

Action Plan

Immediate Awareness Training : Launch mandatory phishing and social engineering workshops for all employees.

Secure Backup Implementation : Institute routine offline backup protocols, ensuring critical data is regularly secured beyond network reach.

Incident Response Drills : Schedule and conduct at least two ransomware-focused incident simulations within the next six months.

By maintaining vigilance, adopting proactive safeguards, and debunking myths, organizations increase their resilience against the crippling consequences of big game ransomware attacks.

*

Sources:

[Big Game Ransomware: the myths experts tell board members](https://doublepulsar.com/big-game-ransomware-the-myths-experts-tell-board-members-03d5e1d1c4b7?source=rss----8343faddf0ec---4)

Cybersecurity & Infrastructure Security Agency (CISA) Reports

Industry Case Studies and Recent Breach Analyses

*

Fraggle Attacks: The Lesser-Known Cyber Threat You Should Fear

_I bet you wish you had a 'No Fraggle Zone' sign now!_

What You Need to Know

A recent article by Cyber News Live delves into Fraggle attacks, an often overlooked but potent type of cyber threat that can cripple network operations by leveraging spoofed UDP traffic. As board members and executives, you need to recognize that while these attacks are not new, their resurgence poses a significant risk to our operations and service availability. Immediate consideration of risk mitigation strategies is critical; expect to allocate resources to bolster our network defenses against this threat vector.

CISO Focus: Denial-of-Service Attack Mitigation

Sentiment: Strong Negative

Time to Impact: Immediate to Short Term

*

When it comes to cybersecurity, attention is usually directed at widely-publicized threats like ransomware or phishing attacks. However, Fraggle attacks, a form of Denial-of-Service (DoS) attack, have quietly been lurking as an underappreciated danger. According to Cyber News Live, these attacks can flood networks with spoofed User Datagram Protocol (UDP) traffic, leading to bandwidth exhaustion, resource depletion, and ultimately, service disruption.

What are Fraggle Attacks?

Fraggle attacks are not novel—they are seasoned veterans of the cyber threat landscape. These attacks primarily involve sending a torrent of UDP packets to IP broadcast addresses, masquerading the source IP as the victim's. The targeted network’s devices, tricked by the spoofed address, begin sending overwhelming traffic back to the victim. This deluge of data can effectively clog up bandwidth and burden processing resources, causing legitimate network activity to crawl or halt entirely.

Key Characteristics:

UDP Use : Targets services on port 7 (Echo) or port 19 (Chargen).

Source Spoofing : Fabricates source IP to mirror the victim’s for reflection.

Traffic Flood : Induces traffic from network devices back to the victim.

The impact can lead to significant network latency, packet loss, or full-scale service outages, making it essential for businesses to preemptively strategize and protect their digital operations.

Business Impact

The primary target of any Fraggle attack, similar to its cousin, the Smurf attack, is to incapacitate the bandwidth and computational wherewithal of its victim. For businesses, this means dealing with:

Operational Downtime : Network downtimes can directly impact productivity and revenue.

Service Unavailability : Customer-facing services may become inaccessible.

Reputational Damage : Repeat incidents could lead to customer mistrust.

In essence, while a Fraggle attack may not steal data, its power lies in rendering critical systems impotent, thereby holding your operations hostage.

Mitigation Strategies

To combat these pesky attackers, organizations must focus on reinforcing their network infrastructure. This means:

Investing in Anti-DoS Solutions : Utilize technology that can detect and absorb volumetric attacks before they reach critical infrastructure.

Implementing Filter Controls : Configure routers and switches to drop UDP packets with spoofed addresses.

Disabling Unused Services : For example, turning off services on ports 7 and 19 if not in use.

Come for the Attack, Stay for the Resilience

In a rapidly evolving cyber threat landscape, the ability of Fraggle attacks to rear their ugly heads every so often acts as a reminder that past vulnerabilities can return with a vengeance. Understanding that they're more than just a fleeting concern, businesses need to adopt continuous monitoring and up-to-date defensive strategies to guard against these cyber nuisances.

With every streaming packet promising calamity, remember: the best defense against a Fraggle attack is a proactive one. Fortify your networks, and let this bizarre-sounding menace find a fiercer guardian than it bargained for.

*

Vendor Diligence Questions

1. What anti-DoS technologies do you offer, and how do they specifically address UDP-based attacks like Fraggle attacks?

2. Can you provide examples of past incidents where your solutions effectively mitigated such attacks?

3. How does your product integrate with existing security frameworks to enhance resilience against threat vectors similar to Fraggle attacks?

Action Plan

Conduct a thorough review of the current network traffic monitoring systems, emphasizing detection capabilities for UDP traffic anomalies.

Collaborate with network infrastructure teams to evaluate and update current firewall and router configurations, ensuring correct filters for incoming and outgoing UDP packets.

Schedule defensive exercises that simulate Fraggle attack scenarios to train response teams and uncover potential weaknesses in current strategies.

*

Source: <https://cybernewslive.com/fraggle-attacks/>

*

"SCAM" Is a Four-Letter Word: BreachForums Edition

_When life gives you scams, make better email filters._

What You Need to Know

Recent findings from BreachForums reveal a surge in sophisticated scamming techniques targeting organizations, underlining the need for heightened cybersecurity measures. An immediate strategic appraisal is essential. The Board and Executive Management should endorse the rapid deployment of advanced security protocols, augment staff training, and prioritize vendor assessments to safeguard organizational assets.

CISO Focus: Cyber Threat Intelligence

Sentiment: Strong Negative

Time to Impact: Immediate

*

As cyber threats evolve, organizations must stay vigilant and preemptive, particularly against prominent schemes emerging from platforms like BreachForums. Scammers are not only refining their tactics but also exploiting increasingly diverse methods to infiltrate corporate defenses.

The Scam Epidemic

BreachForums has unraveled a complexity of scamming operations, where malicious actors are tailoring their approaches to bypass conventional security setups. According to recent analyses from the platform, scammers focus on:

* Phishing Expertise: Phishing remains the crown jewel, with attackers leveraging highly personalized lures to deceive even the well-informed.

* Spoofing Professionals: By replicating legitimate business email formats and extending fraudulent correspondence, attackers maintain an illusion of legality.

* Ransomware Resurgence: This old dog still has a stash of new tricks. Scammers partner ransomware with extortion tactics to coerce payouts without delivering data back.

Impact on Businesses

Organizations face immediate threats that could compromise sensitive data, disrupt business operations, and tarnish reputational integrity:

* Financial Losses: Direct repercussions arise from extortion payments and potential legal fines post-breach, dwarfing the initial impact of the scam.

* Operational Disruptions: With IT resources skewed towards damage control post-breach, core business operations falter, creating domino effects of compromise.

* Reputational Damage: Brand trust is more ephemeral than data, and unable to be encrypted or paid-off back to its original state.

Prevention Tactics

Being proactive rather than reactive is the mantra today's cybersecurity strategies chant. Practices deemed essential include:

* Enhanced Security Training: Regular and thorough training sessions help employees recognize and neutralize phishing and spoofing attempts before damage ensues.

* Stringent Access Controls: Establishing robust authentication methods curb unauthorized access, curtailing scammers' entry vectors.

* Continuous Monitoring and Auditing: Real-time system surveillance can flag anomalous activities, triggering quick incident response.

The Snake Oil Cure

The surreal step-by-step scamming guide provided by BreachForums emphasizes an urgent need for practitioners to disbelieve complexity's glint—that innovative scams can all too often masquerade as advanced technologies, which promised hitch-free operations.

*

Vendor Diligence Questions

1. How does your system stay ahead of evolving scamming techniques, specifically those outlined by BreachForums?

2. What is your incident response time once an anomalous activity is detected?

3. Can you detail your experience in handling phishing and ransomware scams, including prevention innovations and success rates?

Action Plan

1. Execute Immediate Security Reviews: Scrutinize existing systems against the backdrop of BreachForums' new scam revelations.

2. Employee Workshops: Conduct comprehensive employee bootcamps focusing on emerging scam signals and prevention techniques.

3. Vendor Partnership Evaluation: Thoroughly review current vendor practices and ensure alignment with recent insights about scam tactics.

4. Invest in Next-Gen Tools: Prioritize securing budget for cutting-edge cybersecurity tools that uphold preventative and reactionary capacities in evolving threat landscapes.

*

Source: “SCAM” is a four-letter word: BreachForums edition

*

Cyber Heists Target UK Retailers: When Shopping Sprees Go Digital

_All the thrills of a shopping spree, minus the fun and with a lot more hackers._

What You Need to Know

The UK’s National Cyber Security Centre (NCSC) has flagged a worrying trend of increasing cyberattacks on retail businesses, disrupting their operations and security. These cyber incidents are anticipated to severely impact consumer trust and data integrity if not addressed. Executives are advised to reassess and strengthen their cybersecurity protocols immediately to safeguard digital infrastructures and prevent potential revenue losses.

CISO Focus: Threat Intelligence and Incident Response

Sentiment: Strong Negative

Time to Impact: Immediate

*

The UK retail sector is under siege from cybercriminals, according to recent alerts from the National Cyber Security Centre (NCSC). The frequency and severity of cyberattacks against UK retailers have escalated, posing a substantial threat to business operations, consumer trust, and economic stability. Reports indicate that cybercriminals have taken advantage of vulnerabilities in digital platforms, exploiting them to conduct a series of sophisticated cyber heists.

Retailers as Prime Targets

UK retailers have emerged as prime targets due to two crucial vulnerabilities: their expansive digital platforms used to support ecommerce operations, and often inadequate cybersecurity defenses. Attackers are leveraging elements such as outdated software, weak authentication controls, and poor data encryption, making digital retail infrastructures easy prey. The retail sector is particularly enticing to cybercriminals because of the vast volumes of consumer data, including payment information, stored by these businesses.

The Shape of Current Attacks

The attacks manifest in various forms, with some of the most common being:

Ransomware Attacks: Blocking access to critical systems until a ransom is paid, crippling retailer operations.

Phishing Scams: Tricking employees into revealing sensitive credentials, which cybercriminals then use to access systems.

Data Breaches: Unauthorized access to customer data, leading to information theft and potential regulatory fines.

Impact on Business and Beyond

The ramifications of these cyber assaults are expansive. For businesses, the consequences include operational disruption, financial loss from ransom payments, and significant damage to brand reputation. Consumers, on the other hand, face threats of identity theft and loss of privacy.

Moreover, in a fiercely competitive retail environment, trust is a non-negotiable asset. Breaches erode consumer confidence, prompting shoppers to defect to more secure competitors. Regulatory repercussions also loom large for companies negligent in protecting consumer data.

UK NCSC: A Call for Action

The NCSC’s warning serves as a crucial wake-up call for UK retailers. It underscores the urgent need for businesses to overhaul their cybersecurity measures, implement robust incident response strategies, and invest in continuous monitoring to detect and mitigate threats in real time.

Employee Training: Retailers need to invest in regular cybersecurity training for employees, emphasizing the importance of recognizing phishing attempts.

Infrastructure Hardening: Updating and patching systems regularly can close security gaps that cybercriminals exploit.

Consumer Protection: Enhancing consumer data encryption and implementing two-factor authentication can protect sensitive information from unauthorized access.

What Retailers Should Prioritize

To mitigate these threats effectively, experts recommend a proactive rather than reactive approach to cybersecurity.

Regular Audits and Risk Assessments: Regularly scheduled audits can help identify potential vulnerabilities before they are exploited.

Incident Response Plans: Developing comprehensive response plans to address attacks swiftly and minimize damage.

Collaboration with Cybersecurity Experts: Partnering with cybersecurity firms can provide retailers access to cutting-edge technologies and threat intelligence.

After the (Digital) Storm: Cybersecurity Is In Vogue

The NCSC’s report highlights a critical juncture for the UK retail industry. In a digital age defined by rapid ecommerce growth, cybersecurity must evolve in lockstep with technological advancements. Retailers need to realize that cybersecurity is no longer just a technical issue but a vital component of consumer trust and business continuity.

*

Vendor Diligence Questions

1. What advanced threat detection measures do you employ to identify potential cybersecurity threats specific to the retail sector?

2. How do you ensure compliance with relevant data protection regulations to safeguard consumer information?

3. Can you provide examples of your incident response capabilities and how they’ve successfully mitigated past cyber threats for retail clients?

Action Plan for the Team Reporting to CISO

Conduct Immediate Cybersecurity Assessment: Review and update all existing cybersecurity measures, focusing on potential vulnerabilities in retail systems.

Implement Advanced Monitoring Solutions: Deploy threat detection solutions to identify and neutralize cyber threats in real time.

Organize Employee Cybersecurity Training: Schedule compulsory training sessions to educate employees about the latest cyber threats and attack vectors.

*

Source: UK NCSC: Cyberattacks impacting UK retailers are a wake-up call

*

SonicBoom or Just Boom? SonicWall SMA Vulnerabilities in the Wild

_Kaboom! Vulnerabilities unpatched, attackers unmatched._

What You Need to Know

The SonicWall SMA100 appliance is under active attack due to two severe vulnerabilities, CVE-2023-44221 and CVE-2024-38475, recently exposed by watchTowr's analysts. These vulnerabilities, initially reported as rumors, are now confirmed to be exploited in the wild, enabling unauthorized remote access. SonicWall has issued updates, but any delay in patching could expose your organization to significant risk. Immediate updates to affected systems and ongoing monitoring should be your top priority.

CISO focus: Vulnerability Management and Incident Response

Sentiment: Strong Negative

Time to Impact: Immediate

*

In a twist fit for the most bizarre 2025 cyber thriller, SonicWall SMA100 users have found themselves embroiled in a real-life cybersecurity crisis. watchTowr's recent blog highlighted vulnerabilities—initial whispers turned wild reality—that have opened the door for attackers to play tune on the SonicWall security infrastructure. Two key vulnerabilities, CVE-2023-44221 and CVE-2024-38475, lurk in SonicWall's corridor: one in Apache HTTP and another in SSL-VPN tools. These vulnerabilities, it seems, are playing a merciless game with user data, exposing sensitive information and allowing for potential total system compromise.

The Story So Far

The vulnerabilities that have come to light involve two major flaws. The first, CVE-2023-44221, allows attackers to bypass standard authentication, turning SonicWall's defenses into a mere façade. The second, CVE-2024-38475, perilously opens up Apache HTTP servers to arbitrary file reads—even pre-authentication. Underlying software integrations mean that SonicWall's use of the same Apache components inherits these flaws directly. Each provides a runway for attackers to infiltrate systems, potentially granting access to confidential data or giving rise to remote command execution possibilities.

These revelations follow a pattern watchTowr has seen over the past few months: rumors of attacks tracing back to these very exploits. The vulnerabilities now confirmed, SonicWall devices worldwide are in the crosshairs unless systems are promptly patched.

The SonicWall Response

SonicWall's latest PSIRT advisory outlines the necessary updates and mitigation strategies to combat these vulnerabilities. However, managing updates can be complex—enterprises must balance rapid patch deployments with ensuring system stability. SonicWall has detailed their suggested remediation tactics, yet many organizations are already set scrambling, untangling increased network anomalies linked to these exploits.

Risks and Repercussions

An unpatched SonicWall appliance is not just a weak link; it is an open door. With these vulnerabilities, attackers can potentially read sensitive files, exfiltrate data tokens, and leverage them to establish unauthorized remote access—transforming SonicWall's security appliances into ironically insecure gateways.

The urgency for mitigation cannot be overstated: consider the ramifications of compromised customer data, disrupted operations, or even network hijacking—tail-end results that could shatter reputations and bottom lines.

Immediate Steps to Take

Patch Now: Prioritize patching the affected SonicWall devices with the latest updates as provided in SonicWall's PSIRT.

Incident Monitoring: Increase vigilance with incident response teams. Leverage existing telemetry to detect any anomalies or signatures that could signify ongoing exploitations.

Evaluate Access Controls: Review and tighten any access policies to the impacted systems as an interim safeguard against unauthorized access.

The Call to Action: Buckle Down!

The realization of these vulnerabilities' impact is plain and simple: relentless vigilance is your shield and patching your sword. As attacks exploit these vulnerabilities with growing frequency, the potential damage rises uncomfortably close to inevitable. Winter may not be coming, but a cyber storm certainly is.

Before you find yourself up against a wall, SonicWall chaos teaches us it's never too late to brace for impact.

*

Vendor Diligence Questions

1. What steps is the vendor taking to prevent similar vulnerabilities in future device batches or software versions?

2. Has the vendor provided a comprehensive post-mortem analysis detailing the impact and remedy lifecycle of these vulnerabilities?

3. Can the vendor offer prioritized support for the swift deployment of updates and management of emerging threats?

Action Plan

1. Immediate Patching: Ensure all affected SonicWall SMA100 appliances receive the latest security patches.

2. Continuous Monitoring: Deploy heightened network monitoring to catch and respond to any exploitation attempts.

3. Access Review: Adjust and enforce stricter access controls and audit trails around all critical server nodes.

4. User Awareness: Educate users on new security protocols and the significance of these vulnerabilities.

*

Source: watchTowr Lab's SonicBoom Analysis

*

The Robots Are Coming: AI, Cybercrime, and You

_In a world of digital cat and mouse, the mouse just got an AI upgrade._

What You Need to Know

AI technology has advanced rapidly, affording cybercriminals sophisticated tools to scale and automate cyberattacks. This development necessitates immediate action from senior leadership to fortify defenses and update protocols. It's imperative for board members and executives to prioritize cybersecurity strategies that incorporate AI detection and prevention technologies while allocating resources toward continuous monitoring and staff training.

CISO focus: AI in Cybersecurity

Sentiment: Strong Negative

Time to Impact: Immediate

*

The rise of artificial intelligence has infused new vigor into the realm of cybercrime. The game has evolved, and so has the player’s arsenal. Four key lessons have emerged, serving as a vital blueprint for businesses navigating this perilous landscape.

AI as a Double-Edged Sword

AI technology, which holds promise for innovation and efficiency, simultaneously arms cybercriminals with unprecedented capabilities. According to Techtarget, AI empowers attackers to execute sophisticated, scaled operations at breakneck speeds. This dual-edged nature means organizations must capitalize on AI for defensive strategies while acknowledging and preparing for its use against them.

Automation: A Criminal's Best Friend

Cyberthreat actors have embraced automation, ramping up the frequency and volume of attacks. Phishing campaigns, traditionally labor-intensive, can now be deployed en masse with AI’s ability to mimic human behavior and craft convincing, personalized messages. The resulting surge in attack volume demands immediate attention and resources dedicated to advanced threat detection systems.

Crafting Hyper-Personalized Attacks

AI-powered tools grant cyber adversaries the power to design ultra-targeted attacks, leveraging vast quantities of personal data available online. This capability, discussed in NDTV's report, allows for the creation of convincingly human-like interactions that bypass rudimentary security filters. Organizations are urged to strengthen defenses against email deception and social engineering tactics.

The Rise of Deepfakes

Deepfake technology represents another frontier in AI-enabled cybercrime. These highly convincing digital forgeries challenge traditional verification processes, convincing users to act based on manipulated media. This emerging threat underscores the necessity for enhanced media authentication protocols and comprehensive user education programs to recognize fraudulent content.

*

Where the AI Rubber Hits the Road

Understanding the magnitude of AI's role in cybercrime compels immediate action. Organizations must take the threat seriously, evolving to meet new challenges with agility and foresight.

* Invest in AI-Driven Security : To counter AI-fueled cyberattacks, businesses should invest in defensive AI technologies capable of sophisticated anomaly detection and response automation.

* Enhance Staff Training : Develop comprehensive training programs that educate staff about recognizing AI-generated threats, such as sophisticated phishing and deepfake media.

* Bolster Resource Allocation : Ensure sufficient budget allocation for R&D in cybersecurity, particularly in AI defenses, and work towards a dynamic, threat-adaptive security architecture.

As businesses navigate the potential and pitfalls of AI, they must remain vigilant, adaptive, and proactive to outmaneuver the AI-enabled adversaries lurking in the shadows.

Vendor Diligence Questions

1. Does the vendor implement AI and machine learning to improve their cybersecurity measures? If so, how effective is it in identifying and responding to novel threats?

2. How does the vendor’s technology adapt to the rapid evolution of AI-driven cyberattacks, particularly with tactics such as deepfake and hyper-personalized phishing?

3. What kind of audit frameworks does the vendor follow to ensure the robustness of their AI-focused cybersecurity solutions?

Action Plan

For Teams Reporting to the CISO:

1. Immediate Threat Assessment : Conduct a sweeping audit to identify potential vulnerabilities amenable to AI-driven exploits.

2. AI Integration Strategy : Develop and deploy AI-driven tools for real-time threat detection and prevention.

3. Regular Security Drills : Initiate regular drills focused on emerging AI-based threats, ensuring every team member is adept at identifying and responding appropriately.

4. Collaborative Workshops : Host interdisciplinary workshops to foster collaboration and knowledge sharing across teams focused on AI and cybersecurity.

5. Upgrade Protocols : Working with vendors and partners, update existing security protocols to reflect the latest AI threat intelligence.

*

Source

[4 lessons in the new era of AI-enabled cybercrime](https://www.techtarget.com/searchsecurity/feature/Lessons-in-the-new-era-of-AI-enabled-cybercrime)

[AI in cybersecurity: trends and insights from NDTV](https://gadgets.ndtv.com/internet/features/ai-in-cybersecurity-what-you-need-to-know-3456203)

[The Emerging Threat: Deepfakes and Cybersecurity](https://www.csoonline.com/article/345123/deepfakes-and-cybersecurity-what-you-need-to-know.html)

*

_CISO Intelligence is lovingly curated from open source intelligence newsfeeds and is aimed at helping cybersecurity professionals be better, no matter what their stage in their career._

_We’re a small startup, and your subscription and recommendation to others is really important to us._

*Thank you so much for your support!(