The Influence Of AI On Cyber Security

Uploaded on 2020-05-29 in TECHNOLOGY-Key Areas-Artificial Intelligence, FREE TO VIEW, TECHNOLOGY--Developments

As cybersecurity evolves and bad actors become more sophisticated, organizations must adapt. Security teams must take a more proactive approach to Network Traffic Analysis (NTA) in order to avoid the next generation of hacks and breaches to ensure they have a sound cybersecurity position. 

Standard industry solutions include Artificial Intelligence models that are often fundamentally flawed if they compare network behavior exclusively against a historical baseline analysis. 

In 2014, Yahoo! was hit with a cyber-attack affecting 500 million user accounts and 200 million usernames were sold, the   largest known cyber breach on a single company to date. This caused $350 million to be cut from the original price Verizon was meant to buy Yahoo! for, leading to the final sale of $4.83 billion. Yet what is AI doing amidst all of this? Every light has its shadow, on one side AI is at the forefront of it all, helping to protect data and personal information.On the other, cyber criminals could use real AI-based algorithms to attack companies on a scale that the world has never seen. 

A typical cyber crime such as phishing, could be developed significantly into a more complex and sophisticated attack.

In this attack, cyber criminals could use AI to impersonate a friend or family member of its victim to gain information using 'deepfake' techniques . Also, to breach a firm, hackers can create malware to improve stealth attacks. In which hackers use the malware to blend in with an organisation's security only then to carry out untraceable attacks. 

Consequently, it is almost imperative for businesses to deploy cyber AI to not only protect themselves but also their customers.

The task facing  thousands of companies is to build their own AI model to detect malware, but building these models require huge amounts of data as models must recognise attacks and counter them. Also, cyber attacks keep evolving, so AI models need to keep being updated. When finished, these models will be able to detect minute behaviour changes in malware and then remove it from the AI system. 

Organisations migt even use AI-based models on a much larger scale to protect the entirety of their online network, not only one aspect of it. An example of this model is implemented in Gmail, which uses machine learning to block out the millions of spam messages every day.  

AI  Automation
Vital to making a unified platform work are AI and automation technologies. Because organisations cannot keep pace with the growing volume of threats by manual detection and response, they need to leverage AI/ML and automation to fill these gaps. AI-driven solutions can learn what normal behavior looks like in order to detect anomalous behavior. 

Many employees typically access a specific kind of data or only log on at certain times. If an employee’s account starts to show activity outside of these normal parameters, an AI/ML-based solution can detect these anomalies and can inspect or quarantine the affected device or user account until it is determined to be safe or mitigating action can be taken.

If the device is infected with malware or is otherwise acting maliciously, that AI-based tool can also issue automated responses.

Making these tactical tasks the responsibility of AI-driven solutions frees security teams to work on more strategic problems, develop threat intelligence or focus on more difficult tasks such as detecting unknown threats.

AI Daily:         Security Boulevard:       GCN.com

You Might Also Read: 

Combating The Threat Of Malicious AI

 

« All Employees Need This Effective New Training Tool
Blockchain Can Improve 5G »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

2|SEC Consulting (2-SEC)

2|SEC Consulting (2-SEC)

At 2|SEC Consulting, we deliver an end-to-end service of cyber and information security solutions which are tailored to each client’s exact security needs.

Radisys

Radisys

Radisys offers software, products, integrated systems, and professional services for communication service providers and telecom solution vendors.

Uniken

Uniken

Uniken REL-ID is a safe, simple, and scalable security platform that tightly integrates your identity, authentication, and channel security.

Oak Ridge National Laboratory (ORNL)

Oak Ridge National Laboratory (ORNL)

ORNL conducts basic and applied research and development in key areas of science for energy, advanced materials, supercomputing and national security including cybersecurity.

CryptoTec

CryptoTec

CryptoTec is a provider of security concepts and encryption solutions for secure communication between decentralized computerized systems.

CSIRT-NQN

CSIRT-NQN

CSIRT-NQN is the Computer Incident Response Team for the Argentine province of Neuquen.

Commonwealth Cybercrime Initiative (CCI)

Commonwealth Cybercrime Initiative (CCI)

The CCI unites 35 international organisations contributing to multidisciplinary programmes in Commonwealth countries. These organisations form the CCI Consortium.

OffSec

OffSec

OffSec have defined the standard of excellence in penetration testing training. Elite security instructors teach our intense training scenarios and exceptional course material.

Secure Digital Solutions (SDS)

Secure Digital Solutions (SDS)

Secure Digital Solutions is a leading consulting firm in the business of information security providing cyber security program strategy, enterprise risk and compliance, and data privacy.

Indevis

Indevis

Indevis provides IT security, datacenter and network solutions, accompanied by professional consulting, management and support services.

Easy Dynamics

Easy Dynamics

Easy Dynamics is a leading technology services provider with a core focus in Cybersecurity, Cloud Computing, and Information Sharing.

Arelion

Arelion

Arelion is a leading light in global connectivity and we've been keeping the world connected for nearly three decades.

Roberts & Obradovic Law

Roberts & Obradovic Law

Roberts & Obradovic Law Group is a corporate, privacy, employment and litigation law firm.

Vultara

Vultara

Vultara provides web-based product security risk management tools for electronics manufacturers.

Mediatech

Mediatech

Mediatech, specialized in managed Cybersecurity and Cloud services, a single point of contact for your company's IT and infrastructure.

Sensity

Sensity

Sensity is a company that offers an AI-driven solution to detect and verify deepfakes and other forms of identity fraud.