Home > Article > Technology peripherals > Demand for AI cyber defense highlights, advanced ransomware campaigns increase pressure
Deep Instinct’s chief information officer Carl Frogit mentioned in an interview that a key focus of the 2024 budget will shift to ransomware protection technology. He expects artificial intelligence, especially deep learning, to be integrated into business processes to a greater extent, automating workflows and improving the workplace experience
The latest data comes from Deep Instinct, which finds that the total number of ransomware victims will increase rapidly by 2023, and surprisingly, by 2023 There were more victims of ransomware attacks in the first half of the year than in all of 2022. In addition to media coverage of this rising trend, well-respected non-profit organizations like FS-ISAC have acknowledged the problems with this trend, which demonstrates the inadequacy of our current approach to combating evolving threats. The pattern has failed. The emergence of ransomware has changed our original “detect and respond” approach, which has been unable to keep up with the development of new variants. As a result, we are seeing an increasing number of victims. To meet this challenge, we need to shift our tactics again
Attacker techniques have changed and ransomware attacks are being carried out as large-scale campaigns affecting a significant number of victims simultaneously, just like our This year saw the same Zimbra and MOVEit exploits. With the rapid adoption of AI by bad actors, we will see the continued evolution of malware that is more sophisticated than ever before.
The advanced capabilities of AI enable us to now avoid ransomware and other cyberattacks, not just detect and respond to them. Existing evidence shows that response is no longer good enough and we need to return to a prevention-first philosophy, leveraging AI to embed prevention capabilities in infrastructure, storage and business applications. This is where enterprises can truly protect themselves from advanced forms of The only way to combat ransomware and threats, especially by leveraging more sophisticated forms of AI, such as deep learning
How deep learning differs from standard machine learning models in identifying and mitigating ransomware threats ?
Digital libraries are built on neural networks, relatively Compared with other methods, its "brain" can continuously train itself through raw data. Because deep learning models understand the building blocks of malicious files, predictive prevention-based security programs can be implemented and deployed to predict future malicious behavior and detect and prevent unknown threats, ransomware, and zero-day attacks
There are significant advantages to using a digital library-based solution for a business and its cybersecurity operations. First, compared to machine learning-based solutions, the solution’s continuous detection of known and unknown malware is extremely efficient, with an extremely low false positive rate. Deep Learning only needs to be updated once or twice a year to maintain this effect, and is fast and privacy-friendly because it runs independently without the need for ongoing cloud searches or intel sharing, without the need for any cloud analysis
How can deep learning technology reduce false positives, and what is the potential impact on enterprise cost savings?
This affects the effectiveness of the SOC - they cannot protect the enterprise, and it also has other impacts on the ability to sustain the SOC team. The volume and time-intensive nature of dealing with false positive alerts is taking a toll on the mental health of security teams, with more than half of SOC teams saying their stress levels have increased in the past 12 months due to "staff and resource constraints." Without the right technology, SOC teams, already struggling with talent constraints, are forced to focus on mundane monitoring tasks.
A solution powered by deep learning successfully solves this problem with very high accuracy and extremely low false alarm rates, which frees up the SOC team to focus on truly actionable alerts and Locate threats faster and more efficiently. By spending time on real threats, they can optimize their threat posture and engage in more proactive threat hunting, significantly improving their organization's risk posture
The industry has relied on outdated and reactive solutions, such as Endpoint Detection and Response (EDR), to deliver Protect. While EDR tools are still useful from a follow-up perspective, if companies only invest in these tools, they are "assuming a breach" and hoping that remediation efforts will be successful. Clearly, this approach is failing rapidly every year due to changes in the threat landscape. Just like the Signature solution eventually failed and we moved to EDR, EDR is at the same breaking point. As a result, the industry as a whole needs to take a more advanced, proactive approach to security
In fact, IDC recently predicted that endpoint protection will There is some form of rebirth. We are in the post-EDR honeymoon period, with predictive prevention in full effect, stopping attacks before they enter your network.
The only way to combat increasingly sophisticated AI threats is to move from a “what if breach” mentality to a proactive, preventive approach to cybersecurity. Security teams cannot rely solely on outdated tools to meet the challenges of AI. Instead, enterprises should adopt native cybersecurity solutions based on deep learning models to slow the volume and velocity of evolving AI threats. By 2024, we will see enterprises making room in their budgets to integrate advanced AI technologies into their cybersecurity strategies to increase security resiliency and reduce the likelihood of successful attacks
you How do you predict that AI, especially deep learning models, will become more integrated into business processes in the coming year?
Additionally, as AI becomes fully integrated, younger generations will not have the same hands-on experience with workplace tasks such as troubleshooting, outages, and security incidents, as much of these tasks will be automated by AI . For leaders, the question will become: How do we continue to develop and shape people’s skills and careers when the opportunity to learn the basics of the workforce is taken away? I expect this question will be answered by the end of next year.
The above is the detailed content of Demand for AI cyber defense highlights, advanced ransomware campaigns increase pressure. For more information, please follow other related articles on the PHP Chinese website!