Connect with us

GISEC

Organised Cybercrime Groups Are Getting Smarter With the Help of AI

Published

1 year ago

on

Abdul Rehman Tariq, the Regional Sales Director for the Middle East at SolarWinds says, our fears regarding AI-based attacks are slowly becoming a reality

Tell us about the cybersecurity trends for 2024.
Besides the evergreen issues like ransomware attacks, which are still a solid “business model,” we see that our fears regarding AI-based attacks are slowly becoming a reality. Previously, organised cybercrime groups used the unlimited resources of cloud providers as a base for their attacks, but those attacks were rather low-tech. Now with the aid of AI, they are getting smarter. In fact, in the marketplaces of the dark web, we see already trained and ready-to-use AI-based frameworks available for purchase. With the progress in AI voice modelling, we can not only expect new songs in the voice of Elvis but also calls from our CEOs and managers asking for access to resources!

What is the theme of your participation at GISEC 2024?
At GISEC, we will emphasize the critical role of Observability in enhancing the cybersecurity posture of organisations. Simply put, you cannot protect against what you cannot see. In today’s sprawling enterprise IT environments, which can span multiple on-prem data centres and public clouds, the potential for visibility gaps is greater than ever before. Security Observability empowers organisations with visibility across these complex environments, enabling them to reduce the mean time needed to detect, alert, and remediate security incidents.

Which products and solutions will you be showcasing at GISEC 2024?
At GISEC, we intend to showcase SolarWinds Hybrid Cloud Observability, our comprehensive, integrated, full-stack observability solution built to integrate data from across the IT ecosystem, including networks, servers, applications, databases, and more. This solution has been developed using the SolarWinds Secure by Design principles and a rigorous adherence to a multi-layer security framework.

We will also use GISEC as an opportunity to demonstrate how the integration of SolarWinds Hybrid Cloud Observability with SolarWinds Security Event Manager (SEM) and SolarWinds Access Rights Manager (ARM), enables organizations to better understand complexities in their environments while providing real-time visibility to help detect and remediate security issues. These integrations combine security-related events, metrics, and activities with the other data in Hybrid Cloud Observability and allow customers to monitor their security and compliance status on a dedicated security dashboard.

How are you equipped to help companies overcome digital security and privacy challenges?
We have two solid security solutions in our portfolio to help businesses of all sizes deal with access rights and permission management, as well as sorting security-related incidents and properly responding to them. With accesses and permissions, in particular, we see that many organisations still lack proper defences. It’s not rocket science, but all too often something that gets easily overlooked.

Is there a skills gap in the cybersecurity industry? What needs to be done to bridge that gap?
There are obvious gaps when it comes to new-ish technologies. AI is the most popular one, but there are more fields open to attacks. For example, we cannot expect a security analyst to be a Kubernetes expert at the same time. Instead of upskilling, which is a wide stretch in this example, we should take a step back and remind ourselves that everyone is part of the extended security team. Security is a team challenge, and we’re all sitting in the same boat.

Related Topics:
Continue Reading

Cyber Security

Positive Technologies Reports 80% of Middle East Cyberattacks Compromise Confidential Data

Published

4 weeks ago

on

May 16, 2025

By

A new study by cybersecurity firm Positive Technologies has shed light on the evolving cyber threat landscape in the Middle East, revealing that a staggering 80% of successful cyberattacks in the region lead to the breach of confidential information. The research, examining the impact of digital transformation, organized cybercrime, and the underground market, highlights the increasing exposure of Middle Eastern nations to sophisticated cyber threats.

The study found that one in three successful cyberattacks were attributed to Advanced Persistent Threat (APT) groups, which predominantly target government institutions and critical infrastructure. While the rapid adoption of new IT solutions is driving efficiency, it simultaneously expands the attack surface for malicious actors.

Cybercriminals in the region heavily utilize social engineering tactics (61% of cases) and malware (51%), often employing a combination of both. Remote Access Trojans (RATs) emerged as a primary weapon in 27% of malware-based attacks, indicating a common objective of gaining long-term access to compromised systems.

The analysis revealed that credentials and trade secrets (29% each) were the most sought-after data, followed by personal information (20%). This stolen data is frequently leveraged for blackmail or sold on the dark web. Beyond data theft, 38% of attacks resulted in the disruption of core business operations, posing significant risks to critical sectors like healthcare, transportation, and government services.

APT groups are identified as the most formidable threat actors due to their substantial resources and advanced technical capabilities. In 2024, they accounted for 32% of recorded attacks, with a clear focus on government and critical infrastructure. Their activities often extend beyond traditional cybercrime, encompassing cyberespionage and even cyberwarfare aimed at undermining trust and demonstrating digital dominance.

Dark web analysis further revealed that government organizations were the most frequently mentioned targets (34%), followed by the industrial sector (20%). Hacktivist activity was also prominent, with ideologically motivated actors often sharing stolen databases freely, exacerbating the cybercrime landscape.

The United Arab Emirates, Saudi Arabia, Israel, and Qatar, all leaders in digital transformation, were the most frequently cited countries on the dark web in connection with stolen data. Experts suggest that the prevalence of advertisements for selling data from these nations underscores the challenges of securing rapidly expanding digital environments, which cybercriminals are quick to exploit.

Positive Technologies analyst Alexey Lukash said, “In the near future, we expect cyberthreats in the Middle East to grow both in scale and sophistication. As digital transformation efforts expand, so does the attack surface, creating more opportunities for hackers of all skill levels. Governments in the region need to focus on protecting critical infrastructure, financial institutions, and government systems. The consequences of successful attacks in these areas could have far-reaching implications for national security and sovereignty.”

To help organizations build stronger defenses against cyberthreats, Positive Technologies recommends implementing modern security measures. These include vulnerability management systems to automate asset management, as well as identify, prioritize, and remediate vulnerabilities. Positive Technologies also suggests using network traffic analysis tools to monitor network activity and detect cyberattacks. Another critical layer of protection involves securing applications. Such solutions are designed to identify vulnerabilities in applications, detect suspicious activity, and take immediate action to prevent attacks.

Positive Technologies emphasizes the need for a comprehensive, result-driven approach to cybersecurity. This strategy is designed to prevent attackers from disrupting critical business processes. Scalable and flexible, it can be tailored to individual organizations, entire industries, or even large-scale digital ecosystems like nations or international alliances. The goal is to deliver clear, measurable results in cybersecurity—not just to meet compliance standards or rely on isolated technical fixes.

Continue Reading

GISEC

ManageEngine @ GISEC Global 2025: AI, Quantum Computing, and Ransomware Form Part of Cybersecurity Outlook for 2025

Published

1 month ago

on

May 12, 2025

By

As AI-powered attacks and quantum computing reshape the cyber threat landscape, organizations must rethink traditional defense strategies. In an exclusive interview, Sujoy Banerjee, Associate Director at ManageEngine, reveals how businesses can prepare for 2025’s most critical threats—from AI-generated phishing scams to quantum-decrypted ransomware (more…)

Continue Reading

GISEC

Positive Technologies @ GISEC Global 2025: Demonstrating Cutting-Edge Cyber Threats and AI Defense Strategies

Published

1 month ago

on

May 12, 2025

By

At GISEC Global 2025, Positive Technologies showcased live demonstrations of sophisticated hacking techniques while emphasising the growing role of AI in both cyber attacks and defense. In an exclusive interview with Security Review, Ilya Leonov, the Regional Director at Positive Technologies revealed insights about the Middle East’s evolving threat landscape, their work with regional governments, and why investing in human expertise remains critical despite advancing technologies (more…)

Continue Reading
Advertisement

Follow Us

Trending

Copyright © 2021 Security Review Magazine. Rysha Media LLC. All Rights Reserved.