The Influence Of AI On Cyber Security

Uploaded on 2020-05-29 in TECHNOLOGY-Key Areas-Artificial Intelligence, FREE TO VIEW, TECHNOLOGY--Developments

As cybersecurity evolves and bad actors become more sophisticated, organizations must adapt. Security teams must take a more proactive approach to Network Traffic Analysis (NTA) in order to avoid the next generation of hacks and breaches to ensure they have a sound cybersecurity position. 

Standard industry solutions include Artificial Intelligence models that are often fundamentally flawed if they compare network behavior exclusively against a historical baseline analysis. 

In 2014, Yahoo! was hit with a cyber-attack affecting 500 million user accounts and 200 million usernames were sold, the   largest known cyber breach on a single company to date. This caused $350 million to be cut from the original price Verizon was meant to buy Yahoo! for, leading to the final sale of $4.83 billion. Yet what is AI doing amidst all of this? Every light has its shadow, on one side AI is at the forefront of it all, helping to protect data and personal information.On the other, cyber criminals could use real AI-based algorithms to attack companies on a scale that the world has never seen. 

A typical cyber crime such as phishing, could be developed significantly into a more complex and sophisticated attack.

In this attack, cyber criminals could use AI to impersonate a friend or family member of its victim to gain information using 'deepfake' techniques . Also, to breach a firm, hackers can create malware to improve stealth attacks. In which hackers use the malware to blend in with an organisation's security only then to carry out untraceable attacks. 

Consequently, it is almost imperative for businesses to deploy cyber AI to not only protect themselves but also their customers.

The task facing  thousands of companies is to build their own AI model to detect malware, but building these models require huge amounts of data as models must recognise attacks and counter them. Also, cyber attacks keep evolving, so AI models need to keep being updated. When finished, these models will be able to detect minute behaviour changes in malware and then remove it from the AI system. 

Organisations migt even use AI-based models on a much larger scale to protect the entirety of their online network, not only one aspect of it. An example of this model is implemented in Gmail, which uses machine learning to block out the millions of spam messages every day.  

AI  Automation
Vital to making a unified platform work are AI and automation technologies. Because organisations cannot keep pace with the growing volume of threats by manual detection and response, they need to leverage AI/ML and automation to fill these gaps. AI-driven solutions can learn what normal behavior looks like in order to detect anomalous behavior. 

Many employees typically access a specific kind of data or only log on at certain times. If an employee’s account starts to show activity outside of these normal parameters, an AI/ML-based solution can detect these anomalies and can inspect or quarantine the affected device or user account until it is determined to be safe or mitigating action can be taken.

If the device is infected with malware or is otherwise acting maliciously, that AI-based tool can also issue automated responses.

Making these tactical tasks the responsibility of AI-driven solutions frees security teams to work on more strategic problems, develop threat intelligence or focus on more difficult tasks such as detecting unknown threats.

AI Daily:         Security Boulevard:       GCN.com

You Might Also Read: 

Combating The Threat Of Malicious AI

 

« All Employees Need This Effective New Training Tool
Blockchain Can Improve 5G »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Tanium

Tanium

Tanium is an endpoint security and systems management company.

Cyber Security Centre - University of Hertfordshire

Cyber Security Centre - University of Hertfordshire

The Cyber Security Centre provides training, teaching and research in the fast paced topics of cyber security and digital forensics.

CyberSec.sk

CyberSec.sk

CyberSec.sk is the Slovak portal bringing the latest cyber security news, politics, tips and instructions on how to protect the internet.

Simility

Simility

Simility's multi-layered fraud detection solution uses superior machine learning & device intelligence technology to safeguard your online businesses.

X-Ways Software Technology

X-Ways Software Technology

X-Ways provide software for computer forensics, electronic discovery, data recovery, low-level data processing, and IT security.

NuID

NuID

NuID is a pioneer in trustless authentication and decentralized digital identity.

Tapestry Technologies

Tapestry Technologies

Tapestry Technologies supports the Department of Defense in shaping its approach to cybersecurity.

Cybermerc

Cybermerc

Cybermerc's services, training programmes and cyber security solutions are designed to forge collaborations across industry, government and academia, for collective defence of our digital borders.

Pragma Strategy

Pragma Strategy

Pragma is a CREST approved global provider of cybersecurity solutions. We help organisations strengthen cyber resilience and safeguard valuable information assets with a pragmatic approach.

Luxembourg House of Financial Technology (LHoFT)

Luxembourg House of Financial Technology (LHoFT)

Offering start-up incubation, co-working spaces including a soft-landing platform, the LHoFT connects and creates value for the entire Luxembourg FinTech ecosystem.

Kiteworks

Kiteworks

Kiteworks (formerly Accellion) creates a dedicated Private Content Network that ensures zero-trust private content protection and compliance.

NormCyber

NormCyber

NormCyber provide award-winning cyber security and data protection as a service for midsize organisations.

Defendis

Defendis

Defendis develops AI-powered cybersecurity solutions for Government Agencies, Banks, and Businesses, designed to helps them contain data leaks, minimise damage, and proactively hunt for new threats.

PDI Technologies

PDI Technologies

PDI Technologies helps convenience retail and petroleum wholesale businesses around the globe increase efficiency and profitability by securely connecting their data and operations.

MadWolf Technologies

MadWolf Technologies

MadWolf’s mission is to deliver enterprise-quality managed services and focused applications to organizations operating in the non-profit, association and international development sectors.

Lithuanian Cyber Command (LTCYBERCOM)

Lithuanian Cyber Command (LTCYBERCOM)

The Lithuanian Cyber Command is responsible for planning and execution of operations in cyberspace and installation of strategic and operational communications and information systems.