Musk and Wozniak call for halt on AI race / Hackers steal $8.9M from Safemoon / Hackers could disrupt U.S. water pumps

Plus: Australian loan company Latitude Financial Data says its data leak affects 14 million people

Inside.com Part of   Network March 30, 2023

Presented by

Elon Musk and Steve Wozniak are calling for a six-month halt on the AI race. The two entrepreneurs cited security reasons as their leading cause of concern. More: Musk and Wozniak have signed a petition and a letter named Pause Giant AI Experiments. This petition has so far been signed by over 1,400 people. The letter claims that AI systems with human-competitive intelligence can pose profound risks to society and humanity. According to the text, AI could risk automating more jobs than ever before and help spread disinformation. Zoom Out: The race for technological supremacy in artificial intelligence has become the main topic in the tech industry. OpenAI, an organization that Elon Musk co-founded with current CEO Sam Altman to combat the risks that could come from AI, has become the leading player in the sector by launching a commercial chatbot named ChatGPT. The tool became the fastest app ever to reach 100 million users. Microsoft, a major investor in OpenAI, has integrated ChatGPT into its search engine, Bing, while Google has also introduced an AI-powered tool of its own named Bard.

Hackers have stolen $8.9M from the Safemoon Crypto Project. The hackers removed all SFM tokens, causing a price spike. More: Safemoon is a DeFi protocol that features a deflationary utility token, SFM. The protocol is based on the BEP-20 token standard, built on the Binance Smart Chain. The project was launched in the first quarter of 2021 and had features such as static rewards, liquidity pool acquisition, and burn strategy. The project was endorsed by influencers such as Jake Paul and Soulja Boy.  To remove all SFM tokens, the hacker used a security flaw caused by the latest Safemoon blockchain upgrade. All of the tokens were removed instantly in a single transaction. According to some users, the hacker took advantage of the public burn function, which lets users burn tokens from any address.

A message from DEEL Build your global dream team and stay within your budget. Save yourself from financial headaches. At Deel, we’ve simplified a world’s worth of global hiring info into one guide.  Isn’t it time you tap into your full global hiring potential? Explore the ins and outs of global hiring and compliance with our latest handbook. Learn about: Labor laws to consider when hiring Processing international payroll on time Compliance with employment & tax laws abroad Download the Guide

U.S.-made water pumps could be vulnerable to hackers due to a recently tracked bug. The bug affects pumps used in golf courses, municipalities, biogas, agriculture, and manufacturing. More: This security flaw affects the Osprey Pump Controller, a pump made by the American company ProPump. A successful exploit of this flaw could lead to the following: remote code execution, cross-site request forgery, authentication bypass, cross-site scripting, command injection, backdoor access, file disclosure, etc. According to researchers, the flaw could be used to entirely shut down the water supply. Zoom Out: In 2021, CISA warned that hackers had breached at least three water facilities in the U.S. The CISA warning was published only a month after a hacker was caught trying to poison the water supply in a city in Florida.

Australian loan company Latitude Financial Data has stated that its data leak has affected 14 million people. The previous estimate stood at approximately 330,000 affected clients. More: Most of the 14 million affected clients are located in New Zealand or Australia. Approximately 6.1 million records dating back to 2005 were also stolen. Hackers have managed to steal data such as: full names, addresses, telephone numbers, passport numbers, and dates of birth. Regarding passport numbers, researchers have stated that at least 53,000 have been stolen. Australian authorities have stated that they are investigating the case and have reminded the public that buying stolen information online is punishable by up to 10 years of imprisonment.

New malware named AlienFox is being used to steal data from AWS, Google Cloud, and Microsoft. The malware is being distributed primarily on Telegram. More: The main use of AlienFox is to enumerate misconfigured hosts via scanning platforms like LeakIX and SecurityTrails, and then extract credentials that are stored on servers. This malware specifically targets servers that are used in conjunction with popular web frameworks such as: WordPress Laravel, Drupal, Magento, etc. Researchers have stated that they have tracked three variants starting in early 2022. Its most recent addition is the ability to create a new Amazon account using specific email addresses that are not linked with any accounts already. According to researchers, being breached through this flaw could lead to extra service costs and loss of customer trust.

Quick Hits: Introducing Wander REIT: Targeted 8% annual dividend and 14% total return with the first Vacation Rental REIT.* Researchers have tracked a security flaw in the IEEE 802.11 WiFi protocol standard. The flaw could enable hackers to breach networks and connected devices. RedGolf, a Chinese state-sponsored hacker group, is using a custom Windows and Linux backdoor named KEYPLUG to breach its targets. North Korean hackers are believed to be behind a campaign taking advantage of a flaw in the 3CX videoconferencing app. The hackers are deploying info-stealing malware. True I/O, a cybersecurity company specializing in blockchain services, has raised a $9M Series A funding round. The round was led by Deal Box Ventures. Sign up for Lemonade and have your claim paid faster than it took you to read this ad. No joke.* *This is sponsored content.

Upcoming events at Inside: March 30 - Paid Media Framework: A Proven System for Successful Ad Campaigns w/ Devin Littlefield (Market Vantage) (Register Here) March 30 - Inside.com Book Club - The Creative Act by Rick Rubin (Register Here) April 13 - Inside Interview with Lacework - The Evolution of Cloud Security w/ Ulfar Erlingsson (Watch On Demand) April 14 - Inside Interview with Landing - The Ultimate Corporate Housing Resource with Torger Philosophos (Register Here) April 18 - Human Resources Summit'23 (Register Here)

Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. Editor Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords.

Learn about staying compliant with employment & taxes abroad with Deel’s free International Hiring Guide.

767 Bryant St. #203, San Francisco, CA 94107 Copyright © 2023 Inside.com

Did someone forward this email to you? Head over to inside.com to get your very own free subscription! You received this email because you subscribed to Inside Security. Click here to unsubscribe from Inside Security list or manage your subscriptions.