🚨 AI-driven threats may grab the spotlight, but ransomware and job scams are just as dangerous.
I recently explored the latest in these ever-evolving threats with Alex Ivanyuk (Acronis) at the Acronis TRU Security Day Singapore:
💼 Job Scams: Cybercriminals continue to prey on job seekers, using ever creative social engineering to spread malware and steal data or money
💀 Ransomware: Attackers are rebranding and regrouping, weaponizing leaked source code (think LockBit) to continue their destructive campaigns
🤖 AI Threats: Jailbreaking AI models is a growing trend, raising risks for misaligned & unpredictable AI outcomes.
🔑 Key Takeaway: Cybercriminals are getting smarter, but their most effective weapon is still human vulnerability. Awareness is our best defense.
—–
00:59 – Intro – Malware uptrend continues unabated – A historical trend for decades due to (1) internet access (2) simple malware creation tools (3) Gen AI
02:45 – Threat theme 1 – Job Scams
02:59 – “Contagious Interview”, “North Korean hackers are targeting LinkedIn jobseekers with new malware
03:25 – First, social engineering to exploit career related interests ; Next, trick victims to perform certain actions (e.g. malware installs, disguised as legit software, enabling backdoors, spying, long-term hidden access
05:07 – One motivation: to gain entry & steal data
05:24 – “Scammers impersonate companies to steal cryptocurrency from job seekers”
06:05 – Our human vulnerabilities – why are we susceptible?
06:21 – We could get caught up in the moment and forget basic safety measures
06:37 – Beware unexpected offers, especially those that perfectly “meet” your needs – Always question the necessity and security of such requests
07:59 – Threat theme 2- Ransomware
08:07 – “Ransomhub ransomware group targets 210 victims across critical sectors”; “Maze ransomware is shutting down its cybercrime operation”
08:23 – Ransomware gangs rebrand after big payouts, faking shutdown,
08:41 – source code leaks like Lockbit fuel new rebranded ransomware gangs
08:52 – “Free ransomware: LockBit knockoffs and imposters proliferate”
09:00 – New ransomware groups often include experienced cybercriminals
09:15 – Besides social engineering, how have their tactics & techniques evolved?
09:38 – Clop ransomware shows that basic methods remain highly effective (e.g. unpatched vulnerabilities & phishing emails)
09:58 – “How unpatched vulnerabilities feed ransomware attacks”
10:45 – Social engineering – offer easy money for risky actions (e.g. plugging in infected USB drives)
11:39 – Threat theme 3 – AI related cyber threats –
11:52 – “Time Bandit chatgpt jailbreak bypasses safeguards on sensitive topics”
12:04 – Threat actors bypass AI model safeguards using “jailbreaking”
12:43 – “Many-shot jailbreak”: lab reveals how AI safety features can be easily bypassed
13:04 – “Chatgpt jailbreak method uses virtual time travel to breach forbidden topics”
14:26 – Regional & local cyber security challenges
14:43 – Digital & financial strengths attract businesses, but also cybercriminals
—–
Alexander Ivanyuk, Senior Director, Technology, Acronis
Alexander joined Acronis in 2016 as Global Director, Product and Technology Positioning. At this role Alexander is directly involved into all product launches in terms of messaging, go-to-market strategy and overall positioning including partner relations.
—–
Recorded 12th March 2025 Singapore
—–
Stay with us:
LinkedIn ➡️ https://www.linkedin.com/in/lojane/
YouTube ➡️ https://cutt.ly/U2B0yVi
#misscyberpenny
#cybersecurity
#cybercrime
source
