danielsauder

IT security is a matter of trust.

Newsletter: Sicherheit, Digitales & Darüber Hinaus / Security, Digital & Beyond, #21

Remark (15.04.2023): This is an email newsletter, if you are interested send me a message.

08.04.2023

Einen schönen guten Tag,
und willkommen bei Sicherheit, Digitales & Darüber Hinaus, ein Newsletter mit den Themen aus der Cyber Sicherheit, Sicherheitspolitik.
Da ich viel lese, Online Kurse mache, Podcasts höre usw., führe ich seit langer Zeit Lese- und Merklisten. Inhalte, die mir weiterhelfen und von denen ich denke, dass sie für andere Menschen ebenfalls interessant sind, teile ich gerne.
Der Newsletter ist zweisprachig. Wo es möglich ist, versuche ich Artikel über ein Thema auf Deutsch und Englisch zu finden, und entsprechend zu kennzeichnen.
Immer freue ich mich über Anregungen, Vorschläge und Eure Meinung.

[EN] Have a nice day,
and welcome to Security, Digital & Beyond, a newsletter with the topics from cyber security, security policy and more.
Since I read a lot, do online courses, listen to podcasts, etc., I have been keeping reading and watch lists for a long time. I like to share content that helps me and that I think is interesting for other people as well.
The newsletter is bilingual. Where possible, I try to find articles about a topic in German and English and mark them accordingly.
I am always happy about suggestions, proposals and your opinion.

[DE] Managementkompass 01/2023 – BANI Navigieren in der neuen Normalität
Die Themen VUCA und BANI finde ich schon länger spannend. In dieser Ausgabe hatte ich die Freude ein Interview beizusteuern.
https://faz-bm.de/wp-content/uploads/sites/32/epaper/epaper-mk-bani-2023/epaper/ausgabe.pdf

Cybersecurity
[EN] MERCURY and DEV-1084: Destructive attack on hybrid environment
Microsoft Threat Intelligence has detected destructive operations enabled by MERCURY, a nation-state actor linked to the Iranian government, that attacked both on-premises and cloud environments. While the threat actors attempted to masquerade the activity as a standard ransomware campaign, the unrecoverable actions show destruction and disruption were the ultimate goals of the operation.
https://www.microsoft.com/en-us/security/blog/2023/04/07/mercury-and-dev-1084-destructive-attack-on-hybrid-environment/

[EN] Mandiant Catches Another North Korean Gov Hacker Group
Mandiant flags APT43 as a “moderately-sophisticated cyber operator that supports the interests of the North Korean regime.”
https://www.securityweek.com/mandiant-catches-another-north-korean-gov-hacker-group/

[EN] Indian defence agency bought spyware from Pegasus ‘rival’, trade data reveals
The spyware maker Cognyte, often billed as an alternative to Pegasus, has been selling tech gear to the Signal Intelligence Directorate which comes under the Ministry of Defence
https://www.thehindu.com/news/national/indian-defence-agency-bought-pegasus-rival-trade-data-reveals/article66701489.ece

[EN] Special Report: Tesla workers shared sensitive images recorded by customer cars

  • Private camera recordings, captured by cars, were shared in chat rooms: ex-workers
  • Circulated clips included one of child being hit by car: ex-employees
  • Tesla says recordings made by vehicle cameras ‘remain anonymous’
  • One video showed submersible vehicle from James Bond film, owned by Elon Musk

https://www.reuters.com/technology/tesla-workers-shared-sensitive-images-recorded-by-customer-cars-2023-04-06/

[DE] Ampel-Politiker fordern Ausschluss von Huawei bei der Deutschen Bahn
Im Zuge der Digitalisierung der Bahn sollen auch Komponenten des chinesischen Herstellers verbaut werden. Dagegen regt sich massiver Widerstand.
https://app.handelsblatt.com/politik/deutschland/kritische-infrastruktur-ampel-politiker-fordern-ausschluss-von-huawei-bei-der-deutschen-bahn/29081420.html

Sicherheitspolitik und mehr
Security Policy and more

[EN] Xi Jinping’s idea of world order
The real battle for international supremacy today is not between democracies and autocracies, but between different models of global order, with China and the West each offering its own distinct account of “democracy”. The sooner that Western leaders recognise this, the better chance they will have of attracting new partners
https://ecfr.eu/article/xi-jinpings-idea-of-world-order/

[DE] Wodka, Scholz und Gazprom
So feierten Nachwuchs-Lobbyisten für gute Geschäfte mit Russland – und befeuerten die Gas-Abhängigkeit.
https://correctiv.org/aktuelles/russland-ukraine-2/2023/04/03/wodka-scholz-und-gazprom/

[EN] China Is Eating Russia’s Lunch in the Defense Market
The script has flipped in the countries’ traditional defense-industrial relationship.
https://www.defenseone.com/ideas/2023/04/china-eating-russias-lunch-defense-market/384736/

[EN] Russian spies rebound in Europe
Critical infrastructure is a key target for Russia’s intelligence gathering, the priority being to monitor ‘the production and supply of Western arms to Ukraine.’
https://www.politico.eu/article/russia-spy-rebound-europe/

[EN] The Force is Female: 1st Lt. Samantha “FORCE” Colombo
“I ended up doing very well in my class of eight, I finished top of my class,” Colombo said. “The path and the amount of work you have to put in as a female compared to males is the exact same – learning the aircraft and flying it is the same. The biggest difference is more social. The comments and stereotypes make it more difficult.”
https://www.pacaf.af.mil/News/Article-Display/Article/3000481/the-force-is-female-1st-lt-samantha-force-colombo/

Podcast
[DE] Folge #70 Tāningupointo: Zeitenwende auf japanisch
“Sicherheitshalber” ist der Podcast zur sicherheitspolitischen Lage in Deutschland, Europa und der Welt. In Folge 70 sprechen Thomas Wiegold, Ulrike Franke, Frank Sauer und Carlo Masala mit der Japan-Kennerin und -Forscherin Alexandra Sakaki. Alexandra erklärt, welche Zeitenwende sich in Japan gerade vollzieht – denn auch dort wird sicherheitspolitisch gerade gezwungenermaßen massiv umgedacht. Von einer Verdopplung der Verteidigungsausgaben ist die Rede. Alexandra analysiert für die vier vom Sicherheitspod, was die Hintergründe und Implikationen sind und wie wahrscheinlich es eigentlich ist, dass das alles wirklich so kommt.
https://sicherheitspod.de/2023/04/05/70-taningupointo-zeitenwende-auf-japanisch/

ChatGPT
[DE] Italien sperrt ChatGPT
Italiens Datenschutzbehörde hat den KI-basierten Chatbot ChatGPT vorerst sperren lassen. Als Grund nannte sie Verstöße gegen den Daten- und Jugendschutz. Den Entwicklern der Software droht im Zweifel eine Millionenstrafe.
https://www.tagesschau.de/ausland/europa/italien-chatgpt-ki-101.html

[EN] ChatGPT banned in Italy over privacy concerns
Italy has become the first Western country to block advanced chatbot ChatGPT.
https://www.bbc.com/news/technology-65139406

[DE] Australischer Bürgermeister verklagt OpenAI wegen Verleumdung
Die einen lieben ChatGPT, die anderen hassen es. Und einer geht nun sogar gerichtlich gegen den generativen KI-Chatbot vor: Der Bürgermeister einer australischen Kleinstadt will die ChatGPT-Betreiber OpenAI wegen Verleumdung verklagen.
https://t3n.de/news/australischer-buergermeister-klage-verleumdung-chatgpt-1545973/

[EN] Australian mayor prepares world’s first defamation lawsuit over ChatGPT content
ChatGPT falsely identified Brian Hood as guilty party in foreign bribery scandal. In reality he blew the whistle on the illegal scheme
https://amp-theguardian-com.cdn.ampproject.org/c/s/amp.theguardian.com/technology/2023/apr/06/australian-mayor-prepares-worlds-first-defamation-lawsuit-over-chatgpt-content

[EN] ChatGPT invented a sexual harassment scandal and named a real law prof as the accused
The AI chatbot can misrepresent key facts with great flourish, even citing a fake Washington Post article as evidence
https://www.washingtonpost.com/technology/2023/04/05/chatgpt-lies/

[EN] Samsung workers made a major error by using ChatGPT
Samsung meeting notes and new source code are now in the wild after being leaked in ChatGPT
https://www.techradar.com/news/samsung-workers-leaked-company-secrets-by-using-chatgpt

[EN] Midjourney CEO Says ‘Political Satire In China Is Pretty Not Okay,’ But Apparently Silencing Satire About Xi Jinping Is Pretty Okay
https://www.techdirt.com/2023/03/31/midjourney-ceo-says-political-satire-in-china-is-pretty-not-okay-but-apparently-silencing-satire-about-xi-jinping-is-pretty-okay/

If you want to dig deep and start training your own language model.
[EN] GPT4All
Demo, data, and code to train an assistant-style large language model with ~800k GPT-3.5-Turbo Generations based on LLaMa
https://github.com/nomic-ai/gpt4all

Bleibt gesund und viele Grüße / Stay healthy and many greetings,
Daniel

Published by

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: