Disable User
Posts
Why AI will eventually replace us. Yes, you too.

Why AI will eventually replace us. Yes, you too.

Security weekly

Disable User
September 15, 2022

Hi and welcome to another Security weekly. Where we laugh, we cry and share the latest and greatest in security and tech news.

Did you know? If you wanted to count to a trillion it would take you roughly 790 000 years? But you don't like to waste time, that's why you read this newsletter.

In this weeks edition:

🤖 Why AI will eventually replace us.🧮 The risk HP took was calculated, but man, are they bad at math security🔥 the quick and dirty

Reading time: 03:43

Why AI will eventually replace us. Yes, you too.

What's up with the dramatic titles? Obviously to draw in you, the reader.But also because our digital overlords are gaining on us.So, an AI drawing won a fine arts contest. And this obviously caused some debate.Ever since the digital age, people have been saying computers, robots and now AI will take over.And now, it's happening.

To make one thing perfectly clear: the image is still generated based on what we put-in.The images are generated based on endless art, images, ... once made by humans. Put into the AI for learning.It has to learn somewhere.The image which won the contest is still made based on the description the creator put in.So let's not give up yet.

I'm one of the lucky ones to get a DALL-E (AI image generator) invite, and I've been using it for some fun and giggles.Some examples of why I'll never be named Picasso of the digital age:

Hard to realize, but not even an AI can make this guy creative.

EITHER WAY, back to security

AI is of course not only used by creative souls, but also for malicious content.We've all seen deep fake videos of celebrities, politicians and other influential people on the internet.This one "starring" Tom Cruise really made some headlines:

@parishilton and I are #sliving our best life 🍾🤍

Tom (@Tom) has created a short video on TikTok

https://www.tiktok.com/@deeptomcruise/video/7109293771686186246?is_from_webapp=1&sender_device=pc&web_id=7066038623347262981

And while there are still some give aways that it's fake, it's getting darn difficult to tell the difference.

And what are the implications for security, let's say biometrics?This article by Netspi is a step-by-step guide about how a guy bypassed voice security by using deepfake technology.Very interesting by also very alarming.

I'm still very excited about all the good things coming out, and really wonder what the next 10-15 years will look like.And let's be honest, it's not all deepfakes and winning contest.

The risk HP took was calculated, but man, are they bad at math security

Not the best of days for the technology giant. Last week HP announced there was a severe bug in the HP Support Assistant.

For those unaware, Support Assistant is the nail to the coffin of every respectable sysadmin.Wow, that's not what I wanted to type at all. Let's try again.Support Assistant is a total piece of garbage.I think my keyboard is haunted..

subscribe to my newsletter so I can get a sponsor and finally pay for some adobe lessons, this is getting ridiculous..

Support Assistant is a pre-installed HP tool used for optimizing (...) system performance and update drivers and other lovely HP software.The bug makes it possible for hackers to inject a malicious DLL file into a windows device. For this to work, the hacker first needs access to the device.

Whilst some people think "this exploit has a lot of if's and's and but's".The harsh truth is: it's not very hard for a hacker to gain access to a system.Most of the times they don't have any privileges, leaving them relatively harmless.But when a bug like this comes forth, it gives the hacker an easy way in to upgrade their privilege.And that's when the fun starts..So make sure to patch Support Assistant if you have it installed somewhere.

Sadly for HP, the party don't stop just yet.

High-Severity Firmware Security Flaws Left Unpatched in HP Enterprise Devices

Several high-severity firmware security vulnerabilities found in HP's high-end business devices remain unpatched months after being reported publicly.

https://thehackernews.com/2022/09/high-severity-firmware-security-flaws.html

With the latest finds in firmware flaws reported in July, HP has had sufficient time to release a patch.HP reacted earlier this year by releases hotfixes, but a lot of them still remain unpatched.Certainly in business settings, this will leave some security pro's and sysadmins restless at night.

For the last weeks I had a big (tech) company in the spotlight for downright sucking at security, and how they handle it.Feels like we're going back in time..

The quick and dirty

Cisco confirms Yanluowang ransomware leaked stolen company data - Cisco claims it's only junk. Hackers says otherwise. Time will tell I guess?
HP will pay customers for blocking non-HP ink cartridges in EU - I swear I'm not making this stuff up
Meme of the day by the infamous The Cyber Security Hub™

Security like I'm five

Don't have time for hours of research? Don't have 20 years of experience in security? Me neither, but I gotchu fam.In Security like I'm five I cover a range of security topics. I do all the hard work, and explain it to you in a practical matter. Lots of meme's too. Good stuff, good stuff.This and Security weekly conveniently delivered to your mailbox a couple of times a week, for free.Pretty sweet deal if you ask me.

So sign up for the newsletter and be enlightened! (don't set the bar too high tho)