CYBERSECURITY
Intelligent Security
How Artificial Intelligence is both a help and a hindrance to attempts to secure the business.
Fiona Whyte, Founder & Co-CEO, Endida: “When it comes to data breaches, it’s no longer simply about the theft or seizing of data by an attacker; a rapidly emerging threat is around “data tampering” also known “data poisoning”. “This is the covert injection of poisoned data or manipulation of existing data; this is particularly dangerous because companies increasingly rely on data to make informed decisions, and therefore, the integrity of that data is paramount, with tampered data often going undetected for long periods, it can cause serious impacts. A mere fraction of tampered data can have a disproportionate influence, particularly the data that feeds AI models. “One of the most alarming evolutions of attacks that we are seeing is around Malware. The sophistication of Malware is evolving at pace, especially with polymorphic and metamorphic types. These types of malware can alter their code to evade detection, and this is where AI and machine learning are critical to producing proactive responses to their types of attacks. “We are also seeing a constant rise in the number of CVEs (Common Vulnerabilities and Exposures) released each week. CVEs are publicly disclosed identifiers assigned to a specific cybersecurity vulnerability. Currently, the average number of new CVEs reported each week is around 28, and it’s expected to rise to over 500 each week by 2025. Security teams that don’t update their cybersecurity platforms with these new CVEs could find themselves constantly exposed.” Tim Freestone, Chief Strategy and Marketing Officer, Kiteworks: “Hackers are utilising advanced technologies like AI and machine learning to automate attacks and evade detection. The proliferation of connected devices, cloud services, and remote work has significantly expanded the potential entry points for these threats. “Compounding the issue is a shortage of
skilled cybersecurity professionals, making it challenging for organisations to keep up with the ever-evolving threat landscape. Additionally, many employees still lack sufficient cybersecurity awareness, leaving room for human error.” GetApp UK Content Analyst David Jani: “Our findings show there are some areas of concern regarding the threats of phishing and inadequate password management practices affecting remote and hybrid employees. “These factors, however, affect all businesses no matter their workplace set-up, and whilst hybrid companies may not have the same direct oversight over business devices, primarily in-person companies shouldn’t be complacent either.” Stephan Robineau, Executive Vice President, Network Business Division, Alcatel-Lucent Enterprise: “Enterprises today face a number of challenges in protecting their corporate data against the threat of cybersecurity attacks. Firstly, since COVID-19, working patterns continue to evolve. Employees continue to work across offices and remote locations, demanding connectivity to platforms and applications on the corporate network from anywhere and at any time with watertight security. “Secondly, it only takes one unsecured device or application on the corporate network to compromise data secured on that network – and the increase in the number of devices, including a surge in IoT devices, on the corporate network is putting organisations at risk. “The use of new devices and applications brought on by ‘shadow IT’ is almost inevitable in an organisation as employees adapt to digital transformation programs, many of which promote the use of IT by non-IT staff. Easy-to-use and set up technology that offers business benefit to individual departments is brought on board often without thinking of letting IT know.”
Fiona Whyte Founder & Co-CEO
endida.com
Tim Freestone Chief Strategy and Marketing Officer
kiteworks.com
24
Powered by FlippingBook