AI Is Evolving Into A Business Necessity
The events of 2020 suggest the next decade decade will be dramatically different than the one before it and it is crucial that business leaders prepare for the next 10 years unlike any others. In particular, driven by the Coronavirus epidemic Artificial Intelligence (AI) has become an imperative for companies across many industries where it is creating real business value and gaining rapid adoption. According to the McKinsey Global Survey “nearly 25 percent year-over-year increase in the use of AI in standard business processes”.
The transformative power of AI is already affecting a range of functions, including customer service, brand management, operations, people and culture, and more recently, risk management and compliance.
As Business, Education, Healthcare and almost every other aspect of the modern world has embraced the internet, cyber crime has emerged as global marketplace for professional hacking services and governments have turned to advanced cyber attack tools as a means of causing physical damage and disruption to their adversaries’ critical infrastructure. A key milestone came in 2017 when the destructive ransomware WannaCry and NotPetya caught the security world unaware, bypassing traditional tools like firewalls to cripple thousands of organisations across 150 countries, including a number of NHS agencies.
A critical response to the onset of increasingly sophisticated and novel attacks has been AI-powered network defence, a development driven by the philosophy that information about yesterday’s attacks cannot predict tomorrow’s threats.
Today, thousands of organisations have embraced AI to understand what is ‘normal’ for their digital environment and identify behaviour that is anomalous and potentially threatening. Many have even entrusted machine algorithms to autonomously interrupt fast-moving attacks. This active, defensive use of AI has changed the role of security teams fundamentally, freeing up humans to focus on higher level tasks.
AI Systems Create New Risks
Early experience shows that AI can create new types of risks for businesses. In hiring and credit, AI may amplify historical bias against female and minority background applicants, while in healthcare it may lead to opaque decisions because of its 'black box' problem. These risks are amplified by the inherent complexity of deep learning models which may contain hundreds of millions of parameters. This encourages companies to procure third-party vendors’ solutions about which they know little of the inner functioning.
Today, offensive AI can used throughout the attack life cycle, from the use natural language processing to understand written language and to create customised spear-phishing emails at scale or image classification to speed up the exfiltration of sensitive documents. A recent study by Forrester found that 88% of security professionals expect AI-driven attacks will become mainstream in what has already proven to be an era of hyper-change in cyber-attacks, and close to half of them see this happening in the next year, it is only a matter of time.
There are now offensive AI prototypes available that autonomously determine an organisation’s most high-profile targets based on their social media exposure, all in a matter of seconds. The AI then creates customised phishing emails and selects a plausible fake sender identity to trick victims into clicking on a malicious link or opening an attachment that will grant further access into the target organisation.
These have been tested against a defensive AI, mimicking what we expect to see happening in the real world where one AI is combating another in a war of algorithms.
One the leading cyber AI companies, Darktrace, claim that its Cyber AI Analyst product has performed millions of threat investigations, mimicking human thought processes to zoom in on and explore potential threats and then report on the severity of an attack.
Today, thousands of organisations rely on Cyber AI Analyst to run investigations alongside their teams, delivering a 92% time saving.
Mike Beck, Global CISO at Darktrace, commented, “Today it is almost impossible for human security teams to get through the data and intelligence necessary to perform a meaningful investigation in the time available to them. “AI-powered threat investigation has become the de facto way to scale up security operations and prevent more breaches, with Cyber AI Analyst carrying out on average 1.4 million investigations every week.”
WEF: Forrester: Darktrace: Information Age:
You Might Also Read:
Artificial Intelligence Is The Future Of Security: