Phil 11.27.2023

SBIRs

  • Built a mockup of the infamous Podesta phishing email
  • Here’s the html:
<!DOCTYPE html>
<html>
<head>
    <title>Google Security Alert</title>
    <style>
        body {
            font-family: 'Product Sans', sans-serif;
        }
    </style>
</head>
<body>
    <div style="width: 100%; max-width: 600px; margin: 0
	    auto; padding: 20px">
        <img style="width: 30%;" src="https://www.google.com/images/branding/googlelogo/1x/googlelogo_color_272x92dp.png" alt="Google Security Alert">
	<h2 style="background-color: red; color: white; padding: 20px">Someone has your password</h2>
	<p>Hi John</p>
	<p>Someone just used your password to try to sign into your Google Account <a href="mailto:john.podesta@gmail.com">john.podesta@gmail.com</a>.
	<h3>Details</h3>
	<ul>
            <li>Saturday, 19 March, 8:34:30 UTC</li>
            <li>IP Address 134.249.139.239</li>
            <li>Location: Ukraine</li>
        </ul>
	<p>Google stopped this sign-in attempt. You should change your password immediately</p>

        <div style="text-align: left;">
            <a href="https://bit.ly/1PibSUO" style="background-color:#4c8bf5; color: white; padding: 10px; text-decoration: none; font-weight: bold;">
		    Change Password</a>
        </div>
    </div>
</body>
</html>
  • The GPT-4, with the system prompt “You are a cybersecurity expert with a deep understanding of the human behaviors that hackers use to exploit their targets. You explain these techniques clearly and concisely,” has no problem recognizing it with zero shots of training:
    • Caution: The email you received, claiming to be a security alert from Google, raises several red flags and should be treated with suspicion. The use of a shortened URL for password reset, the inclusion of an email link, and an alarming visual design are techniques typically employed by phishers to create urgency and prompt hasty action. The absence of personalized information and the use of a non-Google domain for the logo image are also concerning signs. Do not click any links within this email. Instead, for your security, access your Google account directly through a new browser tab and verify any security issues from there. Remember to be vigilant and report this email as a potential phishing attempt to help protect others.
  • Finished the slide deck. I added a section about prompt swarms learning for defense against social AI attacks. Need to set up an Overleaf for that project.
  • Transferred the slide deck to the ASRC format. Need to send it to MARCOM for blessings