Jeremy Dodson, CISO NextLink Labs. AI Explored host. International speaker, polymath and one of 47 GitLab Champions. Ex-NSA/HPE/Dell/Cylance
getty
Cybersecurity is now a major concern for everyone—from businesses and governments to everyday individuals. While the rapid pace of technology brings exciting new possibilities, it also opens the door to more sophisticated cyber threats. Recent high-profile cyberattacks, such as the Ascension attack and the French State DDoS attack, have demonstrated the devastating impact these threats can have.
Emerging Cyber Threats
The world of cybersecurity is always evolving, with cybercriminals constantly finding new and more persistent ways to exploit vulnerabilities. According to Cybersecurity Ventures, global cybercrime damages are predicted to reach $10.5 trillion annually by 2025, underscoring the urgency for robust cybersecurity measures.
One significant evolution is seen in ransomware attacks, which have moved beyond simply encrypting data and demanding a ransom. Modern ransomware involves data exfiltration and threats of public disclosure, disrupting business operations and damaging reputations.
In May, the Russia-linked Black Basta group targeted Ascension, the largest non-profit Catholic health system in the U.S. The attack disrupted clinical operations across Ascension’s 140 hospitals, leading to a loss of access to electronic health records (EHR). This disruption significantly affected patient care, forcing the company to pause some non-emergency elective procedures at its hospitals.
In addition to ransomware, another critical area of concern is supply chain attacks. These attacks target vulnerabilities within the supply chain network, often through third-party vendors, highlighting the importance of securing the entire supply chain.
Furthermore, cybercriminals are increasingly using AI to enhance their attack methods. Consider the following examples of AI-powered attacks taking over the headlines:
DeepLocker: A proof-of-concept AI-powered malware developed by IBM researchers, remaining hidden until it reaches a specific target.
Deepfake scams: Earlier this year, cybercriminals used AI to impersonate a company executive, convincing an employee to transfer a substantial amount of money.
AI-driven malware can adapt to avoid detection, and AI is used to create deepfakes for sophisticated social engineering attacks.
Distributed denial-of-service (DDoS) attacks also pose significant threats by overwhelming a target’s network or website with a flood of internet traffic, rendering it unusable.
In March 2024, over 300 web domains and 177,000 IP addresses associated with the French government were targeted in a massive DDoS attack. The attack, claimed by Anonymous Sudan and suspected to be sympathetic to Russia, caused severe disruptions to major public service websites.
Best Practices For Building a Robust Cybersecurity Infrastructure
To combat these evolving threats, building a robust cybersecurity infrastructure is essential. Adopting a zero-trust model ensures that every access request is verified, regardless of its origin. Key components include multi-factor authentication (MFA), least privilege access and network segmentation.
Additionally, advanced monitoring tools are essential for detecting and responding to cyber threats in real time. Security information and event management (SIEM) systems, combined with AI-driven analytics, provide comprehensive visibility into network activities and alert security teams to potential threats.
Equally important is addressing human factors in cybersecurity. Employee training and awareness are crucial, as human error remains a significant vulnerability. Regular training programs can equip employees with the knowledge to recognize and respond to potential threats, such as phishing attacks, thereby creating a culture of security awareness and combatting successful attacks.
The Role Of AI In Cybersecurity Defense
While artificial intelligence (AI) has enabled cybercriminals to expand their capabilities, it has also emerged as a powerful tool in the fight against cyber threats. AI’s capabilities in threat detection and response have revolutionized cybersecurity practices. Machine learning algorithms analyze vast amounts of data to identify patterns and anomalies that may indicate a cyberattack.
AI is employed to detect unusual patterns of behavior within networks, identifying anomalies that may indicate potential cyber threats. Advanced AI-driven systems assist security analysts in investigating and responding to these threats with greater efficiency. Additionally, AI solutions analyze user behavior to identify and mitigate insider threats, using machine learning algorithms to detect deviations from typical activity patterns, thereby enhancing overall security posture.
Organizations face significant challenges in protecting sensitive client data from increasingly sophisticated cyber threats. By implementing an AI-powered threat detection system, they can identify and neutralize threats in real time, enhancing their security posture and improving client trust.
For example, a financial services company we worked with faced persistent phishing attacks targeting employees. They deployed an AI-driven email security solution that analyzed incoming emails for suspicious patterns, reducing successful phishing attempts by 90%.
Actionable Steps For Businesses
• Invest in AI and machine learning: Leveraging AI can significantly improve threat detection and response capabilities.
• Adopt a layered security approach: Implement multiple layers of security controls, including firewalls, intrusion detection systems and endpoint protection.
• Regularly update and patch systems: Ensure that all systems and software are up to date to protect against known vulnerabilities.
The Future Of Cybersecurity
The future of cybersecurity will be driven by constant innovation and the need to adapt to new challenges. AI will play a central role in defense and predictive analytics to foresee and mitigate potential threats. Ethical considerations and the development of AI governance frameworks will be crucial for responsible technology use.
Businesses must stay ahead by embracing emerging technologies and fostering a culture of continuous improvement. Collaboration across industries and with governmental agencies will be vital in developing comprehensive cybersecurity strategies.
Potential future threats and innovations to watch include:
• Quantum computing: Promises breakthroughs but poses a significant threat to current encryption methods.
• Advancements in cryptography: Ongoing research will lead to more secure methods to protect data against emerging threats.
As cybersecurity threats evolve quickly, it’s crucial for businesses to stay informed and adopt best practices to build strong defenses. Continuous innovation and strategic planning are key to staying one step ahead of cybercriminals and safeguarding critical assets.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
{Categories} _Category: Takes{/Categories}
{URL}https://www.forbes.com/sites/forbestechcouncil/2024/07/11/the-future-of-cybersecurity-emerging-threats-and-how-to-combat-them/{/URL}
{Author}Jeremy Dodson, Forbes Councils Member{/Author}
{Image}https://imageio.forbes.com/specials-images/imageserve/6630f8f4bc191e3140b4a470/0x0.jpg?format=jpg&height=600&width=1200&fit=bounds{/Image}
{Keywords}Innovation,/innovation,Innovation,/innovation,technology,standard{/Keywords}
{Source}POV{/Source}
{Thumb}{/Thumb}