Protecting Privacy in ChatGPT, Credential Stuffing Strikes 23andMe, Freebie Bots

Thursday, October 19th, 7:22 PM GMT / 9:22 PM CET
Listen on Spotify Podcasts Listen on Apple Podcasts
Protecting Privacy in ChatGPT, Credential Stuffing Strikes 23andMe, Freebie Bots

Episode Description

Protecting Privacy in ChatGPT, Credential Stuffing Strikes 23andMe, Freebie Bots

To start this month’s episode, we once again weigh in on AI – this time considering the privacy implications when feeding prompts into generative AI tools like ChatGPT and Bard. We’ll discuss whether it’s safe to share company IP or your own personal information into such tools, before hearing how we approach this at Netacea from Principal Software Engineer John Beech.

Next, we’ll look to the news of another major data breach, as it was recently revealed that millions of stolen records from genetics testing site 23andMe were available for sale from an underground forum. The attackers even touted that the data identifies those with Jewish genealogy. 23andMe held customers responsible for reusing their passwords on other sites that had been hacked previously, but where does responsibility for protecting this kind of sensitive information lie and what can each party do to keep data safe? Having spent five years of his career in biotech, Engineering Manager Karol Horosin has plenty to add to this story.

Finally, our security researcher extraordinaire Cyril returns to tell us about freebie bots – a type of scalping bot that targets discounted goods to resell in bulk at retail prices. Sounds like a “prime” bot attack type to target recent and upcoming sales events…

Podcast Host

Danielle Middleton-Wren

Head of Media , Netacea

Dani is a cybersecurity writer and marketing specialist, who strives to decipher the mysteries behind complex cybersecurity subjects and deliver them to a wide audience. Since joining Netacea in 2019, Dani has used her experience in journalism and analyst relations to create compelling external communication strategies that effectively articulate the threat of automated attacks.

Podcast Guest

Cyril Noel-Tagoe

Principal Security Researcher , Netacea

Cyril Noel-Tagoe is an experienced information security professional and Principal Security Researcher at Netacea. He spends his time researching, speaking and writing about malicious bots and other cyber security topics.

Karol Horosin

Engineering Manager , Netacea

As well as his role as Engineering Manager at Netacea, Karol is the founder of an AI sentiment analysis product sentimatic.io. He is a frequent conference speaker and writes online about programming, product development and startups on his personal blog.

John Beech

Principal Software Engineer , Netacea

Currently a team lead for Netacea’s software engineering department, John has been working on highly scalable secure applications platforms over the span of 20 years. He’s enthusiastic about welcoming in a new era of AI and computer intelligence.

Episode Transcript

[00:00:00] Dani Middleton-Wren: Hello and welcome to Cybersecurity Sessions. I'm Dani Middleton-Wren and I am joined today by a panel of experts are going to be talking us through some of the cyber security topics that have been hitting the news in the last month.
We'll start today's introductions with the wonderful, the practically famous on the podcast stage at this point, Cyril Noel-Tagoe.
[00:00:26] Cyril Noel-Tagoe: Hi everyone, my name is Cyril Noel-Tagoe, I'm Principal Security Researcher at Netacea.
[00:00:31] John Beech: Hi, I'm John Beech. I'm Software Team Lead for the engineering enablement team at Netacea.
[00:00:37] Karol Horosin: Hi everyone, my name is Karol Horosin and I'm an Engineering Manager here at Netacea.
[00:00:42] Dani Middleton-Wren: Great. Thank you, everyone. And if it wasn't clear by everyone's titles, today we have got a mixture of expertise joining us. So we'll make sure to cover the threat research analysis, the business analysis and the technical

Read more