AI is quickly becoming the basis for more cyberattacks, leading organizations to realize the risk it presents. A new report now shows that AI-enhanced cyberattacks are now the top concern for security leaders.
I recently wrote about prolificacy ransomware what the attacks are and what the results were for those who fell victim to them. In the same report – GetApp Data Security Report 2024 – I also found some interesting data on where AI ranks on cybersecurity leaders’ list of concerns.
According to the report, AI-based attacks were the number one concern (out of twelve possible answers), represented by 36% of organizations worldwide. The use of AI in cyberattacks is a bigger concern than phishingransomware, cloud and supply chain attacks.
What’s interesting is the breakdown of AI issues, shown in the chart below:
Source: Ctfassets
61% of US employees are also concerned about AI-enhanced malware and AI-powered phishing attacks.
Malware is less of a concern to me because security solutions are making great strides in detecting zero-day malware, even those that use sophisticated evasion methods. It’s the enhanced phishing attacks that worry me.
AI is no longer just used to create well-written emails; it’s only a matter of time before someone develops an LLM in AI who will do due diligence regarding an organization, its employees, social media cross-referencing, etc., all in the name of definition of individual employee targets and the generation of phishing emails that have the greatest impact. chance of deceiving an end user.
This is not an alarmist campaign: it is quickly becoming a reality today. This is why it is so important that every employee is enrolled in a new school. security awareness training maintain a sense of alertness that goes beyond anything even AI can offer.
If your employee’s default is “this is malicious until proven otherwise” (something taught in security awareness training), your organization will significantly reduce the risk of even AI-enhanced cyberattacks.
New school security awareness training can give your organization a critical layer of defense against phishing attacks. KnowBe4 empowers your staff to make smarter security decisions every day. More than 70,000 organizations around the world trust the KnowBe4 platform to strengthen their safety culture and reduce human risks.