Stabilized but smaller.

CISA’s acting director assures Congress the agency has “stabilized”. Google and Cisco patch critical vulnerabilities. Fortinet firewalls are being hit by automated attacks that create rogue accounts. A global spam campaign leverages unsecured Zendesk support systems. LastPass warns of attempted account takeovers. Greek authorities make arrests in a sophisticated fake cell tower scam. Executives at Davos express concerns over AI. Pwn2Own Automotive proves profitable. Our guest is Kaushik Devireddy, AI data scientist at Fable Security, with insights on a fake ChatGPT installer. New password, same as the old password. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Today we are joined by Kaushik Devireddy, AI data scientist at Fable Security, discussing their work on "How a fake ChatGPT installer tried to steal my password".

Selected Reading

CISA Is 'Trying to Get Back on Its Mission' After Trump Cuts (CISA)

Google Patches High-Severity V8 Race Condition in Chrome 144 published: today (Beyond Machines)

Cisco Patches Actively Exploited Flaw in Unified Communications Products (Beyond Machines)

Hackers breach Fortinet FortiGate devices, steal firewall configs (Bleeping Computer)

Zendesk ticket systems hijacked in massive global spam wave (Bleeping Computer)

LastPass Warns of Phishing Campaign Attempting to Steal Master Passwords (Infosecurity Magazine)

Greek Police Arrest Scammers in Athens Using Fake Cell Tower for SMS Phishing Operation (TechNadu)

Execs at Davos say AI's biggest problem isn't hype — it's security (Business Insider)

Hackers exploit 29 zero-days on second day of Pwn2Own Automotive (Bleeping Computer)

Analysis of 6 Billion Passwords Shows Stagnant User Behavior (SecurityWeek)

Share your feedback.

What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.

Want to hear your company in the show?

N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices