02 April 2025

Judy Kaldenberg, SVP Sales and Marketing, Nexsan

With ransomware incidents skyrocketing, it is no longer a question of if an attack will occur, but when. Organizations that believe that moving business-critical data to a cloud storage provider makes them immune from such threats are simply ignoring the reality. Ransomware doesn’t discriminate — every business is a potential target.

In 2023, cybercriminals extorted more than US$1 billion in cryptocurrency payments from ransomware victims. What may have started as a simple business disruption just over five years ago has now ballooned into devastating multi-million-dollar incidents, often costing businesses their reputation and leaving them in a prolonged state of recovery – if they are able to recover at all.

01 April 2025

Cato Networks has released its 2025 Cato CTRL™ Threat Report, highlighting a striking discovery: a threat intelligence researcher managed to exploit multiple popular generative AI (GenAI) tools — including DeepSeek, Microsoft Copilot, and DeepAI’s ChatGPT — to create malware capable of stealing login credentials from Google Chrome, without any prior coding experience in malware development.

The researcher accomplished this by crafting a meticulous fictional narrative in which each GenAI tool was assigned specific roles and tasks within a constructed scenario. By employing this method of ‘narrative engineering,’ the researcher successfully circumvented security controls intended to prevent such activities, effectively normalizing restricted operations. This innovative LLM (Large Language Model) jailbreak technique has been termed ‘Immersive World.’