AI, Security Culture & Rising Threats

Uploaded on 2024-01-05 in TECHNOLOGY-Key Areas-Artificial Intelligence, TECHNOLOGY--Resilience, FREE TO VIEW

When it comes to cybersecurity threats, 2023 has been a year of rapid change and continued growth. From Ransomware becoming ever more prevalent to Generative AI and ChatGPT bursting on the scene breaking down barriers to adoption making artificial intelligence a commonplace in both offensive and defensive cyber operations.

Now, with anyone able to access and use this technology, our imagination is our only limitation - but we may not always have the best of intentions.

As the cost-of-living crisis continues to bite, opportunists are increasingly looking to a make a few dollars to cover rent, mortgage, or put food on the table. The financial squeeze and more accessible tools to commit fraud create a lethal combination - and with the average cost of a data breach in the UK being £3.3 million, businesses need to ensure cybersecurity remains a high priority during these trying times.

As we look to the year ahead, cybersecurity threats and opportunities will continue to grow — but where should organisations focus their efforts? We look at the considerations that should be on every security leader's checklist in 2024.

AI Bridges The Cyber Skills Gap  

One of the greatest challenges organisations face is the skills gap. This has been growing for some time and is especially prevalent in cybersecurity. 50% of all UK businesses have a basic cybersecurity skills gap, meaning they’re unable to perform some of the most basic cybersecurity tasks, and there is an estimated shortfall of 11,200 people to meet the demand of the cyber workforce. Under-skilled and understaffed cyber security teams make it nearly impossible for companies to effectively defend themselves.

Moving into 2024, AI could offer a solution by lowering the barrier of entry for cybersecurity roles. Once we build more trust in GenAI in the cyber community, this tech can help to overcome the breadth and complexity of cybersecurity tools and open roles up to a wider talent pool.

CISOs and security leaders can focus on seek out individuals who are curious and good communicators rather than seeking out individuals with specific technical expertise. For example, being able to ask AI if something is normal for the environment and what actions they should take in each scenario nearly eliminates the technical nuances of security tools while also allowing businesses to train AI on internal procedures. AI can even help write tools and scripts, such as GitHub’s Copilot tool, allowing for individuals to tap into their creative power without needing the technical expertise to deliver it. Again, your imagination is your only limitation with the general availability of GenAI.

However, businesses must remain vigilant. While this tech will lower the barrier of entry for industry professionals, it will do the same for cybercriminals. We already have services such as ransomware-as-a-service which lower the barrier of entry for scammers who no longer need to figure out how to make their own tools to bypass various EDR and AV technologies. Instead, their job is simply to get someone to click on a link. In 2024, businesses must be even more prepared for criminals to keep pace with their own AI advancements. Attackers have already begun releasing various purpose built GPT’s like WormGPT, FraudGPT, and WolfGPT. These tools are enabling attackers to quickly and easily write malware, ransomware, phishing emails, phishing sites, discover vulnerabilities and much more.    

AI Drives Zero-Day Attacks  

Another type of cyberattack that is gaining momentum is zero-day attacks. Recently, attacker-side source code has been leveraging AI to pick out vulnerabilities, especially with open-source products. For instance, if an attacker can get a hold of source code of a widely used application or operating system and run it through AI that's focused on identifying buffer overflows and other vulnerabilities, it is going to identify 0-days a thousand times faster than a human could.

Going into 2024, businesses should continue to prioritise and patch but should expect zero days to grow by building out a Crtical Patch Management process.

While businesses have gotten better at patch and vulnerability management, attackers have been leveraging more zero-day vulnerabilities to combat these good processes. But even with these effective programs, exploitation of public-facing applications remains the top entry point (21.2%) for attackers according the Mandiants M-Trends report. Even though the attackers may have less low-hanging fruit, they continue to get creative — and with the ability to scan source code with AI, these threats will only increase further. On the other side of this coin, in 2024, we will start to see defensive solutions that leverage AI to nearly automate the entire process, from identification to bug-fix enabling businesses to keep in step with these actors.

As we stand at the crossroads of an ever-evolving digital landscape, the role of cybersecurity in safeguarding our interconnected world cannot be overstated.

Our adversaries are not only sophisticated but relentless, constantly looking for methods to improve. In this high-stakes game, AI emerges as a double-edged sword, offering unparalleled potential for both defense and offense. As we harness AI to predict, pre-empt, and respond to cyber threats, we must also be vigilant against its misuse by adversaries. The future of cybersecurity is not just about building stronger walls; it's about fostering a culture of security that contemplates the security implications in every aspect of the business, from finance to HR to engineering. 

Ultimately, security is a team sport. The only way to effectively fight this war is as a team while leveraging the same capabilities as our enemies. Technology is evolving at lightning speeds leaving defenders behind to catch up. By working together as a cohesive team, sharing knowledge, and staying ahead of technological advancements, we can create a digital ecosystem that is not just resilient but also trustworthy.

The war against cyber threats is ongoing, and victory lies in our collective effort to outpace, outsmart, and outmaneuver those who seek to undermine our digital security.   

Tom Gorup is Vice President Security Services at Edgio

Image: Amgun

You Might Also Read: 

Creating Order Out Of WAF Management Chaos:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« Bridging The Cybersecurity Skills Gap With Efficiency
The Pivotal Role Of Access Control In Cyber Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: Harnessing the power of Security Information and Event Management (SIEM)

ON-DEMAND WEBINAR: Harnessing the power of Security Information and Event Management (SIEM)

Join our experts as they give the insights you need to power your Security Information and Event Management (SIEM).

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

CSO

CSO

CSO serves enterprise security decision-makers and users with the critical information they need to stay ahead of evolving threats and defend against criminal cyberattacks.

Q-CERT

Q-CERT

Q-CERT is the National Computer Security Emergency Team of Qatar.

Packet Ninjas

Packet Ninjas

Packet Ninjas is a niche cyber security agency with specialized expertise in the use of digital intelligence to strengthen cyber security.

Sigma Payment Solutions

Sigma Payment Solutions

Sigma Payment Solutions offers a comprehensive suite of automated payment processing services, solutions, and technology to businesses in the USA.

QuintessenceLabs

QuintessenceLabs

QuintessenceLabs offers a suite of Data Security technology, products and solutions to secure digital information in-transit, at-rest or in-use.

RiskCentric

RiskCentric

RiskCentric is a consultancy specializing in risk management and compliance.

ShieldIOT

ShieldIOT

ShieldIOT delivers a complete AI-powered security solution across any IoT device, application and network.

Cyber@StationF

Cyber@StationF

Cyber@StationF is an up to 6 months international startup acceleration programme, whose members provide solutions for the Cybersecurity industry.

Nettoken

Nettoken

Nettoken is the first identity management platform designed for everyday internet users, to encourage awareness and control of our ever expanding digital footprint and personal cybersecurity.

Experis

Experis

Experis provide IT resourcing, project solutions and managed services. We enable organizations to cultivate individuals and teams prepared for the digital age.

Cyber Command - Romania

Cyber Command - Romania

Cyber Command represents the military authority responsible for the development, protection and resilience of military IT networks and services that support the Romanian Force Structure.

Imageware

Imageware

Imageware is a leader in biometric cybersecurity. Protect against costly, damaging ransomware hacks by employing biometric cybersecurity solutions.

DigitalPlatforms

DigitalPlatforms

DigitalPlatforms SpA is an Italian group with the mission of providing end-to-end solutions and Internet of Things and Cyber technologies to companies that manage critical infrastructures.

Datapac

Datapac

Datapac is one of Ireland’s largest and most successful ICT solutions and services providers. We have been at the forefront of technology innovation in Ireland for the past three decades.

Scality

Scality

Scality storage unifies data management from edge to core to cloud. Our market-leading file and object storage software protects data on-premises and in hybrid and multi-cloud environments.

Kontra

Kontra

Kontra application security training is an interactive and intuitive learning experience that engages developers.