EmergingTech Spotlight

1. AI risk: Dr. Srinivas Mukkamala, an AI authority who now serves as Ivanti's CPO, shared his concerns over AI. He expressed concerns over bias and transparency of AI, as it could create inequality that “we've never seen in our lifetimes”. He also noted how AI could “advance the enemy's capability”. The speed of launching a cyber attack that could be shorten from “40 days” to “within two seconds” when using AI. [more]

2. Evil LLM: WormGPT - a ChatGPT alternative without ethical boundaries or limitations. The developer of WormGPT is selling its access to help hackers create malware and phishing attacks. [more]

3. LLM performance issue: Researchers at Stanford University and University of California-Berkeley have published a paper which found that the “performance and behavior” of OpenAI’s ChatGPT large language models (LLMs) have changed between March and June 2023. The researchers concluded that their tests revealed that LLMs performance on some tasks have gotten substantially worse over time. [more][more-paper]

4. Smart building risks - Modern building system or smart building technologies are likley to bring many benefits in terms of improved energy efficiency, sustainability, and improved occupant experience. But these systems also introduce new vulnerabilities that can be attractive to malicious actors seeking to launch cyberattacks. [more]

5. CISA free Cloud tools: CISA published a list of tools that would help businesses transitioning into a cloud environment identify proper tools and techniques necessary for the protection of critical assets and data security. [more]

6. Quantum risk: European Policy Center urged Euporean Union (EU) to establish a quantum cybersecurity agenda, including to share information and best practices in post-quantum cryptography, to push for cryptography agility, and to ensure a harmonized quantum transition to tackle quantum cybersecurity threats. [more][more-EPCpaper]

7. Quantum on digital payment: Quantum technology, including Quantum Key Distribution (QKD), is rapidly transforming digital payments by providing enhanced security for trusted parties. Despite challenges in handling transactions with untrusted parties, the potential use of quantum light in digital payments holds promise for secure purchases and safeguarding customer data, driving the future of quantum secure payments. [more]

Web3 Cryptospace Spotlight

1. Conic Finance hacked: 21 Jul - DeFi protocol Conic Finance lost approximately $3.2M due to reentrancy attack on its ETH liquidity pool. A reentrancy attack allows an attacker to drain funds of a vulnerable contract by repeatedly calling the withdraw function before it updates its balance. [more]

2. Twitter accounts taken over: Twitter account of Web3 platforms PleasrDAO and Shell Protocol were taken over by scammers who used them to published malicious links such as, fake airdrops to their followers. [more]

3. US regulation: United States (US) Congress will be looking into crypto regulation bill that would equate regulation of DeFi to a bank. On a separate note, US Securities and Exchange Commission Chair, Gary Gensler, was looking to have an extra $109 million for his agency’s enforcement budget to regulate the crypto markets.

4. Web3 security firm got certified: CertiK, a provider of blockchain and smart contract security solutions, announced that it has become the first Web3 security auditing firm to achieve SOC II certification. [more]

5. Quantum resistant ledger: The Quantum Resistant Ledger (QRL) on MEXC, a secure, reliable digital asset exchange, will be the first to offer a post-quantum secure cryptocurrency that is backed by recommended NIST/NSA post-quantum cryptography. [more]

   1. The QRL's signature scheme, XMSS, is protected from the fundamental and functionally unfixable security flaws of traditional coins like Bitcoin and Ethereum.