Jan 30, 2025

Email 1:

Subject: EU Sanctions Three Russian Nationals for Hacking Estonia

Sender: risky-biz@ghost.io

In a recent report from Google, state-sponsored threat actors from countries like China, Russia, and Iran were found to be using generative AI tools for research and code debugging rather than creating novel cyberweapons. Google’s Gemini tool was identified as the main platform being used for these activities.

Interestingly, while nation-state hackers are utilizing AI tools to enhance productivity, cybercriminals have been slower to adopt AI into their malicious activities. Recent observations show that criminal use of AI tools has been limited to automating tasks like spamming emails and extracting data.

For more insights on this topic, don’t miss out on the latest news from the cybersecurity industry in our newsletter.

[Read More]

Email 2:

Subject: Smiths Group Hit by Cyberattack; Sensitive Data Stolen

Sender: info@metacurity.com

A recent security breach at London-based engineering giant Smiths Group resulted in unauthorized access to the company’s systems. The incident has prompted investigations into unauthorized activity, leading to the rapid isolation of affected systems and activation of business continuity plans.

In a related security incident, US engineering firm ENGlobal confirmed a cyberattack that resulted in the theft of sensitive personal information during November 2024. The attackers encrypted some data files, indicating a ransomware-related incident.

Both incidents highlight the growing threat of cyberattacks targeting large organizations and the importance of robust cybersecurity measures.

[Read More]

Email 3:

Subject: State-Sponsored APTs Misusing Generative AI Tools

Sender: editor@thecyberwire.com

New insights from Google reveal that state-sponsored threat actors are misusing generative AI tools like Gemini for research, code debugging, and content creation rather than creating novel cyberweapons. Notably, actors from China, Russia, Iran, and North Korea were identified as the main users of Gemini, with Iran showing the heaviest overall usage.

While nation-state hackers leverage AI tools for productivity gains, our observations show that cybercriminals remain skeptical of incorporating AI into their malicious activities. Limited use of AI tools amongst cybercriminals has been observed, primarily for automation and data extraction tasks.

To stay updated on the latest cybersecurity news and trends, subscribe to our newsletter now.

[Read More]

Stay Well!