Hey Community — We wanted to give you the Cliffs Notes on what should be focused on in 2023 to keep your HR sector up-to-date. How are we doing this? We are hosting a virtual HR Summit on April 18 & 19, created for our audience of executive business leaders who may want to level up their HR know-how. Register here to get the HR lessons in your inbox after the event takes place. |
| |
 ChatGPT has announced a bug bounty program, offering up to $20,000 to anyone that can find security bugs. The program is active as of yesterday. More: - According to the company, white hat hackers should focus on finding issues on:
- authentication and authorization issues,
- payment problems,
- its application programming interfaces,
- plugin bugs, etc.
- The rewards range from $200 up to $20,000, depending on the severity of the security flaw.
- So far, ChatGPT has given rewards for 14 bug patches that were tracked in less than 24 hours.
- The company's average payout currently stands at $1,287.50.
- OpenAI has partnered with Bugcrowd to manage the submission and reward process.
| |
Microsoft's security researchers have tracked a previously undetected iOS spyware deployed by an Israeli cybersecurity company. The spyware was used on politicians, journalists, and NGOs. More: - The spyware, tracked as EndOfDays, lets hackers listen to phone calls and regular conversations by giving them access to the victim's microphone.
- EndOfDays contains a self-destruct feature that cleans up the traces left behind by the spyware.
- The researchers identified over 600 servers linked to QuaDream spyware between late 2021 and early 2023 and found suspected operators in:
- Bulgaria,
- Czech Republic,
- Hungary,
- Ghana,
- Israel,
- Mexico, etc.
- This flaw was deployed against iOS versions 14.4 and 14.4.2 between January and November 2021.
Zoom Out: - Israeli cybersecurity companies have often been at the center of controversy. Pegasus, spyware created by the NSO group, has been used by different governments around the world to spy on politicians, journalists, and activists by breaching their phone calls and text message conversations.
- The spyware was infamously used by the Spanish government to spy on opposition politicians, while later, Spain's Prime minister himself was targeted with the spyware.
- Multiple European Union officials have called to ban the app, while due to the surrounding controversy, NSO Group's previous CEO, Shalev Hulio, resigned in 2022.
| |
 A message from BRILLIANT Sharpen your analytical thinking with bite-size lessons in math, data, and computer science. Data and CS skills are only becoming more valuable. Fortunately, Brilliant is the best way to level up in just minutes daily. More: - Brilliant makes it easy to build skills in math, data, and computer science through interactive problem-solving.
- Forget spending hours watching videos or dropping thousands on a course. Brilliant was built for modern learners who want to build skills they can put to work quickly.
- Thousands of quick, visual, hands-on lessons help you ramp up on everything from foundational math to neural networks, data science, and more.
Zoom out: - Get hands-on with complex topics and master key concepts in a way that’s fun and effective — studies show interactive learning is 6x more effective than watching videos.
- Join over 10 million people worldwide and start your 30-day free trial today.
- Plus, claim a 20% discount for Inside readers.
Get Started
| |
Russian hackers are reportedly hacking CCTV cameras in coffee shops in Ukraine to gain intelligence on international aid convoys. The information was shared by officials in the National Security Agency. More: - According to NSA cybersecurity director Rob Joyce, Russian hackers are breaching CCTVs to spy on foreign officials that are entering Ukraine to provide financial, political, and organizational aid.
- Additionally, Russian hackers are using city cameras to learn about the different transportation channels used to deliver the aid.
- U.S. intelligence suggests that threat actors are especially focusing on tracking U.S. logistics and intelligence personnel.
| |
ID.me has raised a $132M Series D to offer identity verification software that enables secure log-ins. The company has raised $210M since its inception. More: - ID.me is an identity verification platform that enables federal agencies and enterprises to provide their users with a secure way to log in through identity verification.
- ID.me claims to have around 100 million users in 30 states across the U.S.
- Viking Global Investors led the funding round, with participation from CapitalG, Morgan Stanley Counterpoint, FTV Capital, PSP Growth, Auctus Investment Group, Moonshots Capital, and Scout Ventures.
- The company is based in McLean, Virginia.
- ID.me was founded in 2018.
| |
The Dutch government is set to implement Resource Public Key Infrastructure to improve its network security. RPKI uses cryptography to make internet routing more secure. More: - RPKI provides a way to connect internet number resource information (such as Autonomous System numbers and IP addresses) to a trust anchor.
- The certificate structure mirrors the way in which internet number resources are distributed.
- Without RPKI, Internet routing depends on the trust of the network operators advertising the correct IP prefixes they manage. Under this model, though, if an operator falsely advertises that they handle a particular set of IP addresses, they would receive traffic that would otherwise take a different path.
- According to a statement by the Dutch Government, this standard will be implemented for all government devices by 2024.
- 77.9% of government websites and 75.1% of email domains in the Dutch government have already implemented the standard.
| |
Quick Hits: - They're "realigning" the $19.4B joint surgery market…with robotics. Invest in Monogram ahead of their planned Nasdaq listing.*
- Australian open-source cybersecurity company Fivecast, which provides services for both the public and private sectors, has raised a $20M Series A funding round.
- According to a new report, Lazarus Group has changed its usual targets in its new hacking campaign tracked as DeathNote. The group is no longer targeting automotive companies, choosing to target defense contractors and diplomatic services instead.
- CISA has published the second version of its Zero Trust Maturity Model.
- Put your data where your compute is — close to your users. Turso brings the SQLite database experience to the Edge. Get Started Free.*
*This is sponsored content.
| |
Upcoming Events - April 12 - Monthly Meditation guided by Nicholas Whitaker (Register Here)
- April 13 - Inside Interview with Lacework - The Evolution of Cloud Security w/ Ulfar Erlingsson (Watch On Demand)
- April 13 - Inside Marketing Coffee Break w/ Paolo Dello Vicario (ByTek) (Register Here)
- April 14 - Inside Interview with Landing - The Ultimate Corporate Housing Resource with Torger Philosophos (Register Here)
- April 18 - Human Resources Summit'23 (Register Here)
- April 18 - Inside Interview with TravelBank: Why Employee Happiness Is Falling More Into The Financial Sector (Watch On Demand)
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
| |
