Artificial intelligence has opened a new one cybersecurity vulnerabilitiesdemanding a different type of security posture from enterprises looking to defend against increasing threats. advanced threat actors.
At Trellix, a detection and response specialist, experts prepare clients for targeted attacks in their industries.
““What we’re trying to do is elevate that intelligence…to a more proactive position,” he said. John Fokker (pictured), Trellix’s threat intelligence lead. “So if there’s a weakness or something, or let’s say you’re a company in a certain industry or geography, we’ll provide you with, OK, these are the threats that are relevant to your industry or geography… these are all the elements of their attack. And, by the way, you can improve your security posture by applying XYZ rule out of the box.”
Fokker spoke to CUBE Research John Fourier And Savannah Peterson has mWISE 2024during an exclusive broadcast on theCUBE, SiliconANGLE Media’s live streaming studio. They discussed the impact of AI on ransomware and how organizations can strengthen their defenses. (*Disclosure below.)
A bulletproof security posture for the AI era
Ransomware has grown exponentially over the past year, changing the way threat actors collaborate. Trellix, which provides comprehensive detection and response solutions, has uncovered some concerning trends for AI in the ransomware space.
“We’ve seen malicious actors like us trying to find solutions to problems that are bothering them,” Fokker said. “They’ve used Gemini to get more information about vulnerabilities, web scanners. They’re doing research on some deep fakes. There was a really interesting and very timely case where (the malicious actor) was asking for … voice cloning type software, particularly to extort politicians and crypto influencers.”
In response to these evolving attacks, cybersecurity is increasingly a team effort, according to Fokker. Trellix has partnered with Google, allowing experts from both companies to pool their findings
“Our relationship is stronger than ever,” he said. “We really have researchers helping each other. We’re looking at similar threats, some of the most imminent threats to the U.S. administration. One of the things we do … is a project called RPP, or Research Partner Program, where we help some of the countries around the world that are under massive attack but may not have the funds to protect themselves.”
The companies provide Trellix devices with joint investigations to these government organizations, allowing them to defend against international attacks. Fokker advises companies protecting themselves against attackers such as email phishers or information thieves to know their activity inside out.
“Asset management is knowing what you have in your network, knowing your attack service… but also knowing internally, OK, what’s my security posture?” he said. “Those are very basic things, as well as patch management, understanding the threat landscape, etc. Those are really basic things that we don’t think are always done correctly or to a certain standard.”
Here’s the full video interview, part of SiliconANGLE and theCUBE Research’s coverage of mWISE 2024:
(*Disclosure: Trellix sponsored this segment on theCUBE. Neither Trellix nor other sponsors have editorial control over the content on theCUBE or SiliconANGLE.)
Photo: SiliconANGLE
Your vote of support is important to us and helps us keep the content FREE.
Clicking below supports our mission to provide free, in-depth and relevant content.
Join our community on YouTube
Join the community of over 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies Founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.
THANK YOU