Mastodawn

lol of the day - noticed I’m quoted in this article, but I never spoke to the publication and the quotes are made up. They use GenAI during article creation and just made up what I thought 🤣 https://www.techbuzz.ai/articles/hacker-siphons-700k-from-u-k-energy-firm-in-payment-redirect

Show thread

abadidea 1d ago

@GossiTheDog I’m glad you can laugh it off, I’d be having a breakdown

Show thread

John Philip Bell 1d ago

@0xabad1dea @GossiTheDog

But the important question everyone wants to know is...

Did LLM correctly 'predict' what would have been your quote had they bothered to ask you... 🤪 (that would bother me most 😉)

Show thread

Kevin Beaumont 1d ago

@john_philip_bell @0xabad1dea no, I don't think humans are the weakest link

Show thread

Frank Barton

@0xabad1dea @john_philip_bell @GossiTheDog the “weakest link” In security being the human is such a trope… and completely incorrect
If anything the humans in the chain are the strongest link, and some of our best detectors!

(Okay with that said… some specific humans may best detect by triggering malware…)

Show thread

John Philip Bell 1d ago

@fbarton @0xabad1dea @GossiTheDog
My earlier joking about LLMs aside...

I too would not agree that humans are 'the weakest link', there surely are cases where 'a human' was 'a weakness', but in the context of Dr. Reason's swiss cheese model, rarely the weakest in the overall design of any system.

After all, a key objective of proper cybersecurity is exactly to mitigate the human factor, so arguably, by definition if it came down to a human, something more critical failed. (Design, GRC, etc.)

(From maker-checker to insider threat - the field is supposed to be designed to reduce the weakness of the human factor, if anything that failed.)