This Week Health
2 Minute Drill: AI Takes the Lead and Scattered Spider's Airline Attack with Drex DeFord

Subscribe to This Week Health

Share this episode

Drex covers three critical cybersecurity developments: Expo's groundbreaking AI-powered penetration testing system dominates HackerOne with over 1,000 vulnerabilities found, Microsoft redesigns the iconic Blue Screen of Death after 40 years, and the Scattered Spider ransomware group pivots from insurance to airline industry attacks using advanced social engineering and deepfakes.

Remember, Stay a Little Paranoid 

X: This Week Health 

LinkedIn: This Week Health 

Donate: Alex’s Lemonade Stand: Foundation for Childhood Cancer 

Transcript

 This transcription is provided by artificial intelligence. We believe in technology but understand that even the smartest robots can sometimes get speech recognition wrong.

Hey everyone. I'm Drex and this is the two minute drill where I cover three hot security stories twice a week. All part of the 2 29 Project. Cyber and Risk community here at this week. Health, you can sign up. I'll keep you posted on the latest webinars and podcasts and all the other inside info, including our upcoming in-person events like our 2 29 Project City tour dinners and summits.

And something new coming this fall, it's easy to stay in the, no. Go to this week, health.com/security. Click on the join the community button to sign up and I'll keep you in the loop. I. Good to see everyone today. Here's some stuff you might wanna know about. The top white hat hacker in the world is, for the first time ever, an AI bot from a company called Expo Expo is a fully autonomous, AI driven pen testing system.

The winning stats from Hacker One are pretty crazy. Expos submitted over a thousand vulnerabilities. 54 of those were classified as critical. 242 were high. All of them, virtually all of them were actually accepted. There were some duplicates because other teams are also competing, and they may have submitted the same vulnerability as Expo, but it just so you know.

These kinds of bug bounty programs for companies who are legitimately involved, they may pay 10,000, $25,000 for some of those bug bounties. I. Who knows how much that information would be worth to cyber thugs. The really amazing part to me is that this is done by an ai. It's actually not just one ai, it's a team of ais.

So think of this as sort of like an AI project manager who. Grinds through the system code for a program, finds potential problems, then spins up additional AI teammates as necessary to dig through the investigation and identify the bug and understand how it works and create a report. And then the AI agents all work together.

The other teammates think of it as sort of peer review. They peer review and document that bug. And you know, if the good guys are doing it, the bad guys are doing it. If you're a bad guy, it's only one more step to add one more hacker AI agent to figure out the best way to weaponize the bug that is found.

It's kind of uncomfortable, but now's the time for you to think through your own AI strategy. How will you be building or buying AI or AI agents to help you detect, respond, remediate, build resilience as part of your health system's? Fight against cyber thugs. One of the things I've done to help me make sure people keep their hands off my machine when I'm operating in public, like at a conference, is to set my screensaver to a Microsoft Windows blue screen of death.

That image creates an almost visceral reaction when people see it. Uh, they cringe. They walk away from my computer, like it almost has some kind of infectious disease. Anyway, we all know the blue screen of death and what it means and how we all recoil when we see it. Well, Microsoft has decided after 40 years that the blue screen needs a makeover, so no more frowny face, just a rebrand from blue to black and hopefully a better restart process.

You'll see that later this summer on Windows 11. Last week I talked about Scattered Spider, a ransomware group that's not affiliated with a specific government or nation state as we like to say. Scattered. Spider has traditionally taken an approach of hacking just one industry at a time. They build some specialization on that industry, their security weaknesses, and then they attack and steal data and hold those companies for ransom.

For the past few weeks, they've been focused on insurance companies taking on companies like Aflac. Well, now it appears they've decided to take on the airlines, Canada's WestJet, Hawaiian Airlines. Now, American Airlines may have all been in scattered spider sites. Investigations are still ongoing. But the tight grouping of airline attacks is definitely suspicious.

Just a quick reminder, scattered Spider has mastered social engineering earning new victims by convincing help desks and IT support teams to do password resets or re-register MFA devices. And given everything else that's happening in ai, they're also leaning into deep fakes. That sound and look a lot like people at your organization, your health system.

So it's always a good time to chat about this kind of stuff with your teams. You can stay up to date on all the latest healthcare, innovation, tech and security news at our news site this week, health.com/news. That's it for today's two minute drill. Thanks for being here. Stay a little paranoid. I'll see you around campus.

2 Minute Drill is Sponsored By

Our Shows

Related Content

1 2 3 320
Healthcare Transformation Powered by Community

© Copyright 2024 Health Lyrics All rights reserved