ENISA Warns of AI Manipulation Ahead of Upcoming European Elections

The use of AI chatbots and AI-enabled manipulation of information by malicious actors is a key threat ahead of the upcoming 2024 elections across the continent, according to the European Union Agency for Cybersecurity. The 11th edition of ENISA's Threat Landscape report, published on October 19, 2023, compiles cyber threats observed by the Agency from July 2022 to June 2023. In the comprehensive, 161-page long report, ENISA threat researchers argued that information manipulation should be considered as a cybersecurity threat and the increased use of AI for malicious purposes strengthens the need for vigilance ahead of the upcoming European elections. They also found that state-nexus actors increasingly target employees in key positions, politicians, government officials, journalists and activists, particularly using spear-phishing emails and social networks. Juhan Lepassaar, ENISA's executive director, warned governments, organizations and the public that the growing cyber threat against democracies will be challenging to mitigate: "Trust in the EU electoral process will critically depend on our capacity to rely on cybersecure infrastructures and on the integrity and availability of information. Now, it is up to us to ensure we take the necessary actions to achieve this sensitive yet essential goal for our democracies," he commented. While the use of AI is concerning, "a number of older techniques require much less effort and still remain highly efficient and a resurgence of them has been observed," the report stated. In total, ENISA recorded approximately 2580 incidents during the reporting period, with an additional 220 incidents specifically targeting two or more EU Member States. A grand total of 24,690 common vulnerabilities and exposures were recorded over the period, marking an increase of 2770 in comparison to the prior reporting period. Ransomware remained the top threat observed by ENISA, accounting for 34% of EU-focused threats. Distributed denial-of-service ranked second, representing 28% of all threats against EU countries. Another trend ENISA observed was a shift in cyber threat actors' motivations. While ransomware attacks are primarily motivated by financial gain, a number of such attacks were also intended to have a disruptive effect, which is also the key driver for DDoS attacks and information manipulation. This means that disruption is now identified as the second most common motive after financial gain. "In most cases, top threats may be motivated by a combination of intentions such as financial gain, disruption, espionage, destruction or ideology in the case of hacktivism," wrote the ENISA researchers. A good example is a technique consisting of trojanizing known software packages. "We observe that state-nexus actors adopt attack patterns typically seen in criminal campaigns. Or, in some cases, state-nexus actors supported actions from cybercriminals whether directly or indirectly. Some of the techniques include targeted malvertising where malevolent sites point to trojanized versions of legitimate applications. Those actors also resort to techniques allowing them to have full control over the operating system boot process, and then making it possible to disable OS security mechanisms," read the report.

This Cyber News was published on www.infosecurity-magazine.com. Publication date: Thu, 30 Nov 2023 23:19:27 +0000


Cyber News related to ENISA Warns of AI Manipulation Ahead of Upcoming European Elections

ENISA Warns of AI Manipulation Ahead of Upcoming European Elections - The use of AI chatbots and AI-enabled manipulation of information by malicious actors is a key threat ahead of the upcoming 2024 elections across the continent, according to the European Union Agency for Cybersecurity. The 11th edition of ENISA's ...
10 months ago Infosecurity-magazine.com
Survey: Election Workers Feel Unprepared for Upcoming Cyberthreats - The issues of outside interference in U.S. elections and the security of the systems behind them have been talked and debate for at least a decade and promise to be at the forefront again as the country gears up for what promises to be a pivotal ...
9 months ago Securityboulevard.com
EU Takes a Leap Forward with Cybersecurity Certification Scheme - The EUCC, or EU cybersecurity certification scheme, has an implementing rule that was adopted by the European Commission. The result is consistent with the cybersecurity certification methodology under consideration on EUCC, which was created by ...
8 months ago Cysecurity.news
7th Cybersecurity Forum: Power grids cybersecurity ascending to prominence — ENISA - 7th Cybersecurity Forum: Power grids cybersecurity ascending to prominence The Association of European Distribution System Operators (E.DSO), the European Energy Information Sharing and Analysis Centre (EE-ISAC), the European Network for Cyber ...
1 week ago Enisa.europa.eu
The 2024 ERA-ENISA Conference on Railway Cybersecurity seeks to strengthen sector preparedness and resilience against current threats — ENISA - The 2024 ERA-ENISA Conference on Railway Cybersecurity seeks to strengthen sector preparedness and resilience against current threats Amidst emerging technology advancements and evolving security challenges in the sector, the fourth edition of the ...
1 week ago Enisa.europa.eu
CISA and ENISA enhance their Cooperation - Geopolitics have shaped the cyber threat landscape, bringing like-minded partners closer together in the wake of common cyber challenges and advances in digital technologies. Today at the EU-US Cyber Dialogue, ENISA and CISA announced the signing of ...
10 months ago Enisa.europa.eu
Microsoft Cloud Users Store Personal Data In Europe - In effort to resolve privacy worries, Microsoft is to allow its cloud customers to store all personal data within EU. Microsoft has confirmed that it will allow cloud customers to store all their personal data within the European Union, in an effort ...
9 months ago Silicon.co.uk
Restrictions on Gemini Chatbot's Election Answers by Google - AI chatbot Gemini has been limited by Google in terms of its ability to respond to queries concerning several forthcoming elections in several countries, including the presidential election in the United States, this year. According to an ...
6 months ago Cysecurity.news
Shared Responsibility: How We Can All Ensure Election Security - In 2024, voters in more than 60 countries-representing 4 billion people-will cast ballots. Some of the elections are far-reaching-such as the upcoming European Parliamentary elections, which will span 27 countries from June 6 to 9. In an era where ...
4 months ago Feedpress.me
The Intersection of AI and Cybersecurity: Unveiling Threats to Elections - As we witness the growing reliance on AI, particularly in the realm of elections, a new concern emerges-how AI usage can potentially open the door to cybersecurity threats that jeopardize the integrity of democratic processes. 1.) AI-Powered ...
9 months ago Cybersecurity-insiders.com
Europe Sees More Hacktivism, GDPR Echoes, and New Security Laws Ahead for 2024 - An evolving geopolitical landscape has impacted cybersecurity in Europe this year, posing specific challenges for safeguarding critical infrastructure and sensitive data. The Ukraine war and the conflict in Gaza have led to a rise in hacktivism, and ...
9 months ago Darkreading.com
How Cybercriminals Will Sway 2024 US Elections, Or Try To - Foreign interference actors, mostly operating out of Russia, Iran, and China, are ramping up efforts to influence US audiences ahead of 2024's national elections. One prime example is Doppelganger, a Russia-based influence operation that has ...
9 months ago Darkreading.com
Third Of European Businesses Have Adopted AI, AWS - AWS finds AI already adopted at sizeable number of European businesses, resulting in increased revenues, productivity. An insight into the adoption rate of artificial intelligence within the business community has been offered in a new report from ...
8 months ago Silicon.co.uk
Leak of Greek Diaspora Emails Shakes Government: A Closer Look - The recent leak of Greek diaspora emails has sent shockwaves through the conservative government of Prime Minister Kyriakos Mitsotakis. The scandal, which unfolded in March 2024, has raised questions about privacy, data protection, and political ...
6 months ago Cysecurity.news
Security Boulevard - This is likely our last shot at preserving liberal democracy in the U.S., or at least avoiding 20-40 years of abject horribleness by wannabe bigoted and sociopathic demigods. The year 2024 is also set to be a significant year for global politics, ...
9 months ago Securityboulevard.com
European firms urge China to give more clarity on data transfer laws - AP Moeller - Maersk A/S Siemens AG BEIJING, Nov 15 - European firms "Urgently" need China to give clearer definitions of key terms in its cross-border data transfer rules, a European business lobby group said on Wednesday, warning firms also stood to ...
10 months ago Reuters.com
The European Space Agency Explores Cybersecurity for Space Industry - Cybersecurity for space missions is not optional and should be taken seriously. While Europe's burgeoning commercial space industry is facing some challenges, the European Space Agency is taking specific steps to boost defenses, such as planning to ...
10 months ago Darkreading.com
Bangladeshi Elections Come Into DDoS Crosshairs - The end of 2023 saw an uptick in distributed denial-of-service traffic across major industries in Bangladesh, and it may have been geared to disrupt the latest national elections. Last week, it came to light that a mobile app providing critical ...
8 months ago Darkreading.com
US and EU infosec bodies sign intel-sharing pact The Register - The US Cybersecurity and Infrastructure Security Agency has signed a working arrangement with its EU counterparts to increase cross-border information sharing and more to tackle criminals. The European Union Agency for Cybersecurity said today the ...
10 months ago Theregister.com
Only 4% of US States Fully Prepared for Cyber-Attacks Targeting Electi - Under 4% of US states are fully prepared to detect and recover from election-targeted cybersecurity incidents, according to research by Arctic Wolf. The survey of state and local government leaders across the US found that 14.3% of states were 'not ...
9 months ago Infosecurity-magazine.com
Corporate Accountability: Tech Titans Address the Menace of Misleading AI in Elections - In a report issued on Friday, 20 leading technology companies pledged to take proactive steps to prevent deceptive uses of artificial intelligence from interfering with global elections, including Google, Meta, Microsoft, OpenAI, TikTok, X, Amazon ...
7 months ago Cysecurity.news
EU's Didier Reyon Warns TikTok CEO to Comply with New Digital Rules - EU Commissioner Didier Reyon warned the CEO of social media company TikTok to comply with new digital rules proposed in the European Union. ...
1 year ago Securityweek.com
Microsoft Warns of Election Threats in 2024 - A new threat intelligence assessment released by Microsoft's Threat Analysis Center has warned of potential unprecedented challenges to the security of elections over the next year. In its latest report, Microsoft suggested that authoritarian nation ...
10 months ago Infosecurity-magazine.com
DC elections agency warns voting roll may have been stolen The Register - The US Capital's election agency says a ransomware crew might have stolen its entire voter roll, which includes the personal information of all registered voters in the District of Columbia. The DC Board of Elections first became aware of the ...
10 months ago Theregister.com
EU Formalizes Cybersecurity Support For Ukraine - The EU has cemented ties with Ukraine on cybersecurity cooperation, with a new formal agreement designed to improve information sharing and capacity building. Announced today, the agreement formalizes discussions begun in Warsaw during the EU-Ukraine ...
10 months ago Infosecurity-magazine.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)