Cyber Security
Is Artificial Intelligence a Boon or Bane for Cybersecurity?
Written by Sergey Belov, Head of Internal Security at Acronis
AI stands at the forefront of innovations in online safety in 2024, transforming how organisations detect, analyse and respond to threats. Businesses across the Middle East are increasingly investing in AI, recognising its potential to enhance operations and safeguard digital assets through advanced security and data protection measures. By leveraging AI’s processing power, companies can bolster their defences, preemptively addressing threats before they escalate. However, while Artificial Intelligence offers significant benefits to businesses worldwide, its adoption also escalates the risk of potential attacks and security vulnerabilities.
Here are some ways Artificial Intelligence acts for and against cybersecurity:
Artificial Intelligence for Cybersecurity
Studies show that 91% of the businesses in UAE have employed AI in their cyber safety strategies to address the increase in threats today.
- Threat detection and response: AI-enhanced security solutions utilise machine learning algorithms to analyse extensive data sets from various origins, aiding IT professionals in identifying and addressing cyber threats promptly.
- Behavioural analysis: Tools powered by AI for behavioural analysis monitor the actions of users and systems to detect anomalies that may signal potential security risks.
- Predictive analytics: AI and machine learning algorithms analyse past data to forecast future cyber protection trends and anticipate emerging threats.
- Automation of routine tasks: AI-driven automation technologies streamline everyday safety operations, including threat detection, incident response, and vulnerability management, allowing security teams to concentrate more on strategic activities.
Artificial Intelligence Against Cybersecurity
As technology advances, so do the threats against it. In the Middle East, the cyber threat landscape is evolving rapidly, with targeted ransomware attacks, supply chain vulnerabilities and advanced phishing methods on the rise.
Recent data shows a 29.1% increase in malware detection and a 25.5% rise in blocked URLs, emphasising the urgency for robust security measures. To address these challenges it is important to be aware of the threats that reside in new technologies and identify the best plan of action against them.
- Bias and discrimination: AI algorithms are susceptible to bias and discrimination, potentially leading to inaccurate decisions and unintended consequences. To mitigate these risks, organisations must ensure AI-driven cybersecurity systems are trained on diverse and representative datasets, thereby minimising bias and mitigating ethical and legal concerns.
- False positives and negatives: AI-driven security systems may produce false positives (incorrectly identifying benign activities as malicious) or false negatives (failing to detect genuine security threats), resulting in either unnecessary alerts or missed opportunities leading to unnecessary alerts or missed opportunities to prevent security incidents.
- Adversarial attacks: AI systems can be vulnerable to adversarial attacks, where malicious actors manipulate input data to evade detection by AI algorithms. Adversarial training and anomaly detection techniques can reduce these risks and ensure the resilience of systems depending on Artificial Intelligence.
Moreover, AI not only enhances threat detection but also empowers cybercriminals to execute sophisticated attacks. 73% of organisations in the UAE have experienced ransomware attacks in the past two years, underscoring the critical need for heightened vigilance.
Addressing the Challenges
To truly reap the benefits of emerging technology, companies must adopt a comprehensive approach to address the risks posed by them. This involves investing in AI-driven threat detection and prevention tools, employing advanced AI security measures, and continuously updating and refining their cyber protection strategies. Moreover, organisations should conduct regular training, attack simulations and awareness programs for their employees to stay prepared for the malicious usage of AI. Examples of malicious use of AI targeting employees include several concerning scenarios:
- Deepfakes: Deepfake techniques can be employed by attackers with minimal technical expertise. These can be created using software that is easily accessible through a simple Google search. Such deepfakes could be used to impersonate company executives in video calls, tricking employees into disclosing sensitive information or authorising fraudulent transactions.
- Phishing Scams: AI can be used to generate highly personalised phishing emails. By analysing publicly available data, AI can craft emails that appear to come from a trusted source within the company, making employees more likely to click on malicious links or download harmful attachments.
- Voice Spoofing: Similar to deepfakes, AI can be used to create realistic voice simulations. Attackers can use these to call employees, pretend to be someone they trust and manipulate them into revealing confidential information or performing certain actions that compromise security.
- Automated Social Engineering: AI can automate social engineering attacks by scraping social media and other online platforms to gather detailed profiles of employees. This information can then be used to craft convincing fake scenarios, gaining employees’ trust and leading them to inadvertently share sensitive company information.
- Fake News and Disinformation: AI-generated fake news or misinformation can be targeted at employees to influence their decisions or create unrest within the company. For example, spreading false rumours about company layoffs or financial instability can cause panic and disrupt normal operations.
These examples illustrate how easily accessible AI tools can be exploited by attackers to target employees and compromise organisational security. Companies must educate their employees about these threats and implement robust security measures to mitigate such risks. In addition to in-house security measures, companies should consider leveraging third-party security solutions to enhance the level of security, especially for addressing threats that are beyond their capabilities.
As we venture into the uncharted territories of Artificial intelligence, the potential of this technology is limitless. While we uncover new possibilities and leverage their benefits to enhance and protect our organisations, vigilance is crucial against its potential drawbacks. Finding the right balance and developing effective strategies is paramount in the ever-evolving landscape of security.
Cyber Security
AmiViz Champions Cybersecurity Innovation at Leading MENA Events
AmiViz has announced its successful participation in two key regional cybersecurity conferences: MENA ISC 2024 in Saudi Arabia, and CYSEC UAE 2024 in the UAE. These events have served as a platform for AmiViz to collaborate with its top vendors, including Bitsight, Cequence Security, Picus Security, AlgoSec, BlackBerry, Check Point, Tenable, Asimily, and Threatcop, to showcase cutting-edge cybersecurity technologies and solutions.
Throughout these events, AmiViz engaged deeply with partners and customers, gaining invaluable insights into the unique cybersecurity challenges faced in the region. The focus was on promoting new technologies that address these challenges and enhance security protocols for businesses operating in the dynamic Middle Eastern market.
“Our presence at the MENA ISC 2024, and CYSEC UAE 2024 has been a remarkable opportunity for us to not only present our innovative solutions but also to understand firsthand the needs and pain points of our clients,” stated Ilyas Mohammed, COO at AmiViz. “Collaboration with our key vendors has allowed us to offer a comprehensive suite of cybersecurity products and services that cater specifically to the complexities of this region.”
AmiViz’s participation in these events underscores its commitment to advancing cybersecurity readiness and resilience across the Middle East. By leveraging strategic partnerships with leading global vendors, AmiViz continues to bring state-of-the-art cybersecurity solutions to the forefront, helping businesses protect their critical assets against increasingly sophisticated cyber threats.
AmiViz, along with its key vendors, will continue participating in major tech events, with plans for a strong presence at GITEX next month. Following GITEX, the company is gearing up for Black Hat in Saudi Arabia this November, showcasing its cutting-edge cybersecurity solutions to the region.
Cyber Security
UAE and Saudi Arabia Face Unprecedented 70% Rise in Threats: Positive Technologies
Positive Technologies experts have unveiled comprehensive research on the shadow market of cybercriminal services targeting the Gulf countries. The UAE and Saudi Arabian organizations remain in the crosshairs of cybercriminals, and over half of all posts on darknet forums are about selling data and access to local companies’ infrastructures. Researchers have highlighted a sharp increase in the free distribution of such data on the dark web, along with a surge in reports of DDoS attacks targeting the public sector and other industries. One in five ads analyzed was related to buying or selling access, with two-thirds available for under $1,000.
According to the research, cybercriminals remain focused on the two largest economies in the region—the UAE (40% of all posts) and Saudi Arabia (26%). The spotlight on darknet forums is on the public sector, which accounted for 21% of all analyzed posts. Most of the data (63%) related to regional government institutions was published for free as part of hacktivist attacks. Next in line for most popular on the dark web are commerce (16% of all ads), the service sector (15%), and financial institutions (13%).
Amid geopolitical tensions, hacker groups have ramped up calls for DDoS attacks and breaches to disrupt government institutions in the region. In the first half of 2024, the number of reports on the results of DDoS attacks on the dark web surged by 70% compared to the same period in 2023. Beyond the public sector, hacktivists also targeted the financial and transportation sectors.
According to the research, 33% of all the analyzed ads were linked to data breaches. One-third of these messages were about selling information. In these ads, criminals primarily offered databases stolen from major commerce companies, with an average cost of $2,300.
Positive Technologies analyst Anastasiya Chursina commented, “When compared to our previous research over a similar period, the share of freely distributed data almost doubled (up to 59%). This allows criminals to broaden the profiles of potential victims for targeted attacks. If the victim refuses to pay the ransom, both ransomware groups, as well as hacktivists (whose goal is to draw public attention to a political stance rather than just receive financial gain), can distribute data for free.”
Accessing company information resources is the second most common type of dark web ads, making up 21% of all listings. According to the research, in 70% of all cases, access can be bought for less than $1,000. The vast amount of access-for-sale ads on the darknet and their low cost make it easier for cybercriminals to gain initial access and launch attacks on organizations in the region.
Positive Technologies recommends that companies build their defences based on result-driven cybersecurity, using modern tools such as application-level firewalls, including cloud versions, network traffic analysis systems, solutions for monitoring information security events and managing incidents, as well as metaproducts.
Cyber Security
BotGuard OÜ to Offer Live Demos at GITEX GLOBAL 2024
BotGuard OÜ will present its intuitive, user-friendly cybersecurity solution at GITEX GLOBAL 2024, focusing on effective bot protection. Live demonstrations in Hall 25 stand H25-21 will showcase the ease and efficiency of the technology in securing websites against malicious attacks. “Our participation in GITEX GLOBAL 2024 underscores our commitment to addressing the escalating malicious bot attacks faced by organizations worldwide,” said Bertil Brendeke, Chief Revenue Officer (CRO) of BotGuard OÜ. “At GITEX, we aim to engage with industry leaders and stakeholders, sharing our expertise and practical technologies that can help fortify their defences.”
In 2023, 17% of API attacks involved bad bots exploiting business logic vulnerabilities. For hosting companies, such vulnerabilities can lead to unauthorised access to sensitive customer data or control over hosting resources, further emphasizing the need for reliable security protocols and regular audits of their systems. “BotGuard OÜ’s solutions are designed to address these exact challenges, enabling businesses to safeguard their digital assets. The technology is incredibly easy to use, making it accessible for businesses of all sizes,” the company said.
By participating in GITEX GLOBAL 2024, BotGuard OÜ aims to expand its reach in the Middle East, providing local businesses with the tools they need to combat cyber threats effectively. During the event, live demonstrations in Hall 25 stand H25-21 will showcase how their website protection can be set up within a minute. These demonstrations will highlight the efficiency and effectiveness of BotGuard’s solutions.
-
Cyber Security1 week ago
Global Cybersecurity Efforts Gain Momentum, But More Action Needed
-
Cyber Security1 week ago
Proofpoint Sets New Standard for Human-Centric Security
-
Homeland Security1 week ago
Homeland Security Market is Expected to Surpass $900 Bn By 2032
-
Homeland Security1 week ago
Lockheed Martin Delivers C-130J Super Hercules to Egypt
-
Events1 week ago
GITEX Digi_Health 5.0 Expo-Summit Asia Launches in Thailand
-
Cyber Security2 days ago
UAE and Saudi Arabia Face Unprecedented 70% Rise in Threats: Positive Technologies
-
Cyber Security2 days ago
BotGuard OÜ to Offer Live Demos at GITEX GLOBAL 2024
-
Cyber Security13 hours ago
AmiViz Champions Cybersecurity Innovation at Leading MENA Events