433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | [email protected] | Office: (727) 493-2351

Spotlight: The Challenge to Detect Stealthy Attacks Against AI Data

What if someone were to manipulate the data used to train AI? NIST is collaborating on a competition to get ahead of potential threats like this.
http://news.poseidon-us.com/Svfzjb

COVID-compliance requirements in job postings are so 10 minutes ago, OPM says

In today’s Federal Newscast: National Guardsmen from five states are helping fight wildfires in Louisiana. GSA is using the Inflation Reduction Act to make more than 100 federal buildings all-electric. And OPM says its time to drop COVID-compliance stipulations in federal job postings.
http://news.poseidon-us.com/SvfQ7G

Don’t rush ethics in generative AI adoption plans

Even when leaders feel the pressure to adopt generative AI quickly, ethical frameworks and use case policies should guide their plans.
http://news.poseidon-us.com/SvfHmK

Common usernames submitted to honeypots, (Tue, Sep 5th)

Based on reader feedback, I decided to take a look at usernames submitted to honeypots. The usernames that are seen on a daily basis look very familiar. They tend to come from default user accounts, such as “administrator” on Windows systems or ”root” on Linux systems. The knowledge of a default user account can help in brute force attacks. If the username is already known, only the password needs to be guessed. This shouldn't be too much of a problem to users as long as strong passwords are chosen or other authentication methods such as public key authentication is used. Setting up public key authentication is also referenced in our DShield setup instructions for a Raspberry Pi [2]. 
http://news.poseidon-us.com/SvdHYJ

Reforming federal hiring: Does the Chance to Compete Act promise more than the government can deliver?

The massively bipartisan Chance to Compete Act aims to modernize federal hiring — but experts say limitations in HR offices could stunt its potential, while others think the bill doesn’t take hiring reform far enough.
http://news.poseidon-us.com/Svd8Ww

Pandemic watchdog sees ‘target-rich environment’ for AI to track down fraudsters

The Pandemic Response Accountability Committee sees AI as a valuable tool to flag potential fraud in pandemic spending data. 
http://news.poseidon-us.com/SvbvPz

Creating a YARA Rule to Detect Obfuscated Strings, (Mon, Sep 4th)

I wrote a blog post “Quickpost: Analysis of PDF/ActiveMime Polyglot Maldocs” on how to analyse PDF/ActiveMime polyglot malicious document files and also developed a YARA rule to detect them.
http://news.poseidon-us.com/SvbfDX