Intro
This week we’ve seen advancement in the AI space, for both good and bad, as well as international organizations identifying email breaches.
More fallout from Microsoft’s January breach
Links: The Hacker News
Surprising absolutely no one, researchers have found malicious third-party GPT’s for ChatGPT’s third-party marketplace. The plugins appear to be taking advantage of several attack vectors client-side, such as prompting for additional dependencies or stealing token access to specific sites.
International Monetary Fund’s emails hacked in attack
Links: Bleeping Computer
The IMF disclosed a cyber incident on Friday, March 15, after several email accounts were breached. Investigations are ongoing but as it stands now, the IMF has found no evidence that additional systems were accessed.
European Union’s AI Act approved
Links: BBC
The EU’s AI Act has been approved, much to the chagrin of AI companies around the world. The Act aims to regulate AI based on potential harm to individuals (insert SkyNet joke here), based on defined risk levels. The EU has also created a dedicated site for individuals to identify how the Act will affect them and what rights they have under the law.