Biggest Breaches of 2022 | ChatGPT | Top Five Trends of 2023

December 12th

Article by Christopher Lauder, Client Engagement Executive, Rela8 Group


Biggest Breaches of 2022

More than 4,100 publicly disclosed data breaches occurred last year resulting in more than 22 billion records being exposed in 2021. This year, it is expected that this figure will be exceeded by as much as five percent.

In a recap of the year so far, CSHub have published a list of some of the biggest breaches of 2022. Some of which you may recognise! For more information and context about each individual breach, please take a look at their full article which is linked below this list.

10. Revolut data breach exposes information for more than 50,000 customers

9. Hacker attempts to sell data of 500 million WhatsApp users on dark web

8. SHEIN fined US$1.9mn over data breach affecting 39 million customers

7. Personal and medical data for 11 million people accessed in Optus data breach

6. 7 million peoples’ information stolen in Medibank data leak

5. Twitter confirms data from 5.4 million accounts was stolen

4. Student loan data breach leaks 2.5 million social security numbers

3. More than 1.2 million credit card numbers leaked on hacking forum

2. Hacker allegedly hits both Uber and Rockstar

1. Twitter accused of covering up data breach that affects millions

For more information about each of these breaches, take a look at the source below!

Source - Biggest Data Breaches and Leaks of 2022 - CS Hub

ChatGPT

Over these past few weeks, you may have seen many people speaking about ChatGPT, the new language model recently unveiled by OpenAI which has the potential to revolutionise the way we interact with machines. In its own words, it is a large language model that has been trained on a massive amount of text data, allowing it to generate human-like text in response to a given prompt. 

One of the key features of ChatGPT is its ability to generate long-form text. Unlike some other language models, which are limited to generating short phrases or sentences, ChatGPT can generate text that is several paragraphs long. This makes it well-suited for tasks such as generating news articles, stories, or even entire books.

But it's easy to see how AI like this could be abused, whether to indulge laziness or something more sinister. Just as deepfakes have done for videos, the potential of an AI which can generate text barely discernible from a human will set alarm bells ringing that it could be exploited in bad faith.

For its part, OpenAI says ChatGPT still has plenty of room to improve. Answers can be "incorrect or nonsensical" - despite sounding legitimate in most cases - and it can also be "overly verbose" and "overuse certain phrases". While the tech company has "made efforts to make the model refuse inappropriate requests, it will sometimes respond to harmful instructions or exhibit biased behaviour".

Source - Chat GPT - Open AI

Source - Chat GPT - SC Magazine

Source - Chat GPT - Sky News

Top Five Trends of 2023

Finally, as we approach 2023, Forbes has published an article wrapping up 2022 and looking ahead into what will be the key trends for 2023.

In 2022 a shift to a culture of home and remote working that started during the Covid-19 pandemic and has persisted in many organisations, and the spread of the internet of things (IoT) into every area of business and society means there has never been more opportunity for lax security to cause headaches and expense. Because of this, cyber security is top of everyone’s agenda in 2023, so here’s a look at some of the key trends in 2023:

1. Internet of Things and Cloud Security

The more devices we connect together and network, the more potential doors and windows exist that attackers can use to get in and access our data. In 2023, analysts at Gartner predict there will be 43 billion IoT-connected devices in the world.

2. Work-from-home cybersecurity becomes a priority for businesses

Recently, a cyber security priority for many organisations has been to secure the millions of devices worldwide that are being used for home and remote working since the start of the pandemic. Pre-pandemic, when we were all office-based, it was simple enough for security agents, probably based in IT departments, to regularly check and update company laptops and smartphones.

This made it relatively simple to ensure they were free of spyware and malware and were running the latest versions of anti-virus software and other preventative measures. In 2023, when workers are more likely than ever to use personal devices to remotely connect to work networks, a new set of challenges has emerged.

3. International state-sponsored attackers target businesses as well as governments

Nation-states frequently take part in cyber-espionage and sabotage in an attempt to undermine unfriendly or competing governments or to access secrets. In this day and age, however, it's increasingly likely that companies and non-governmental organisations (NGOs) will find themselves targeted by state actors.

Since the 2017 WannaCry ransomware attack, there have been hundreds of thousands of attacks on servers all around the world that security agencies believe can be traced to foreign governments. In 2023, more than 70 countries are due to hold governmental elections – events that are frequently a target for attack by hostile foreign interests.

4. Artificial intelligence (AI) plays an increasingly prominent role in cybersecurity

As the number of attempted cyberattacks has grown rapidly, it has become increasingly tricky for human cyber security experts to react to them all and predict where the most dangerous attacks will take place next. This is where AI comes into play.

According to IBM, companies that use AI and automation to detect and respond to data breaches save an average of $3 million compared to those that don’t.

5. Building a security-aware culture

Perhaps the most important step that can be taken at any organisation is to ensure that it is working towards initiating and fostering a culture of awareness around cybersecurity issues.

Today, it’s no longer good enough for employers or employees to simply think of cybersecurity as an issue for the IT department to take care of. In fact, developing an awareness of the threats and taking basic precautions to ensure safety should be a fundamental part of everyone’s job description in 2023!

Source - Trends for 2023 - Forbes

If you want to get in touch then give us a shout