Discover more from Lukasz Olejnik on Cyber, Privacy and Tech Policy Critique
TechLetters #150 AI Security, Privacy, Policy. More privacy in Biden's EO.
US AI rules. US to require that developers of the most powerful AI systems share their safety test results and other critical information with the U.S. government. And protect against the risks of using AI to engineer bioweapons. At the same time the US will strengthen privacy-preserving research and technologies. Great! It considers "enabling powerful offensive cyber operations through automated vulnerability discovery and exploitation against a wide range of potential targets of cyber attacks". “a model shall be considered to have potential capabilities that could be used in malicious cyber-enabled activity if it requires a quantity of computing power greater than 1026 integer or floating-point operations and is trained on a computing cluster that has a set of machines physically co-located in a single datacenter, transitively connected by data center networking of over 100 Gbit/s, and having a theoretical maximum compute capacity of 1020 integer or floating-point operations per second for training AI. “
Arabic-speaking people targeted by a cyber theft tool. Spreads via Telegram, 'hacks' WhatsApp. Steals data from smartphone, can record with a microphone. Do not install apps and modifications from untrusted sources!
Supply-chain hack attempts. After Okta breach, multiple attempts to breach their customers. 1Password, BeyondTrust, "third customer ", "fourth customer", Cloudflare.
Subscribe for free to receive new posts and support my work.
US/Biden executive order on AI has a lot about privacy. Great. It considers privacy technologies, differential privacy, privacy-enhancing technologies. “privacy and civil liberties must be protected as AI continues advancing. Artificial Intelligence is making it easier to extract, re-identify, link, infer, and act on sensitive information about people’s identities, locations, habits, and desires. Artificial Intelligence’s capabilities in these areas can increase the risk that personal data could be exploited and exposed”.
In case you feel it's worth it to forward this content further:
If you’d like to share: