How would AI change Information Security / Cyber Security in next 1 to 3 years?

First, AI has already and will continue to empower adversaries, helping them target phising into automated spear-phising. It already powers meta-attacks based on iterative learning: trying anything and gradually understanding what type works. It helps generate fake content for have more realistic large scale fake profile.

AI has helped defensive capacity by identifying patterns in attacks but this is rudimentary and will continue to play catch-up for the years to come. A change in paradigm will help, by trying to think of adversaries like learning machines and building dedicated AI-focused honey pots to learn how they learn.

One good example is creating false identities to bypass facial recognition tools. This is quite an intensive domain of research and is also very facsinating because one can visualize what AI can do !

The Cyberdefence and research area is capitalising on Machine learning to do simple stuff. However companies like Dark Trace have advanced tooling commoditised to assess patterns within and external to a specific organisation. Where AI is developing is in the extended supply chain assessment of risk and risk actors as well as in the data value chain.  For the first a number of tools and capabilities exist to protect assets and mitigate attacks. Although integrating them may a different challenge to ensure systems coverage. There have been massive leaps in the IOT assessment for asset management protection and threat. (reducing the threat of Toasters).  For me the more exciting is the merger of Data governance, data and privacy protection and cyber risk assessment in the data value chain. This typically is where the Value is for cyber thieves. Here the AI maths and methods are still evolving and the mindset, culture and outside thinking is evolving. 

Being Ethics as balancing factor we need to make use of AI and implement it to define behavioural aspects across organisational environment to identify, measure and control risk.

This potential malicious misfiring of AI systems is one of the most serious cyber challenges associated with AI. Someone could easily hack into an AI-powered system and modify it for their own purposes. This could include sharing videos that radicalize people without their knowledge or promoting advertisements on social media platforms that promote a single point of view.

I think Cyber Security Redteaming will benifit the most in 1 to 3 years, automation of anything scriptable with intelligence based use cases.

Automated threat detection: AI-based systems can monitor network traffic, endpoints, and other data sources in real-time, detecting anomalies and patterns that could indicate a threat. This can help organizations detect and respond to cyber-attacks more quickly.

Predictive threat modeling: AI can analyze large volumes of data to identify patterns that could indicate an impending attack. This can help organizations take proactive measures to prevent attacks before they happen.

Enhanced authentication: AI can help to strengthen authentication systems, for example, by using biometric data to verify user identities more securely.

Automated incident response: AI can be used to automate certain aspects of incident response, such as containment and remediation, freeing up security personnel to focus on more complex tasks.

Advanced threat intelligence: AI can be used to analyze threat intelligence data from a range of sources to identify emerging threats and predict future attack vectors.

New artificial intelligence (AI)-powered security technologies and solutions, such as self-healing AI networks and AI-powered security orchestration, automation, and response (SOAR) platforms, are expected to emerge. AI is almost certain to be utilized to deliver more tailored and proactive security solutions.

AI is such a double-edged sword.    Just as Bad Actors are using it to craft very convincing phishing, or using it to easily bypass bio-factor authentication (voice identification and confirmation), good actors can use it to self-evaluate vulnerabilities and help detect when networks are being accessed by unauthorized people.  Thus – the cat and mouse game hasn’t changed much, it’s just additional tools in the race.

BUT -  where I see the real issue in AI lays is when we as humans start to trust the output more and more.  Before long, AI will be perceived as ‘all knowledgeable’ as people start to trust its output.  Then it takes only one bad actor to find a way to tweak its output to tweak what we start to believe or even our actions.  A good example is using AI to make stock decisions.  Think about it – we saw the human version of this w/ Gamestop and Blackberry.

I know this might be sensitive – but it’s not too far off from what we are seeing in Social Media (Facebook during political elections as one of many examples) and others, but done via purposeful human altering interactions.    With AI – this issue can be significantly worse and more socially impactful.  I know some people think Musk is ‘out there’ – but when you think about where this is going. . .  he might not be too far off if we don’t pay attention.

There is a common belief among people who view AI as a potential threat that it could lead to a doomsday scenario where AI engines, such as those developed by OpenAI, Google, Microsoft, and others, could be used by malicious actors to identify vulnerabilities and launch attacks on critical IT infrastructures with greater ease than ever before.
After decades of experience in cybersecurity, I no longer feel scared. The world of cybersecurity has been like an arms race between two sides - the bad guys and the good guys. The bad guys have an edge in this race as they only need to find one weakness in a product, while the good guys have the daunting task of ensuring every single product component is secure.
The same tools used by the bad guys can also be utilized by the good guys, or maybe the other way around? Both hackers and developers have employed tools that search for vulnerabilities, although developers have been less willing to adopt them. AI is no exception, and it may aid developers in writing more resilient code by tackling the laborious tasks of thorough input and error checking. These tasks are still among the most prevalent causes of software flaws. To ensure better quality control, developers should integrate AI tools into their development and testing processes. This way, any code written or modified will be subject to scrutiny from the outset. It is preferable to avoid relying on external entities, good or bad, to use these tools only after the product has been released for use.
This constantly changing cybersecurity landscape requires a proactive strategy that recognizes AI’s dual potential as both a threat and a powerful defence mechanism. Although there is still fear of AI-driven doomsday scenarios, my years of experience in the field have taught me that cybersecurity is an ongoing battle, an arms race between those who attempt to exploit vulnerabilities and those who strive to defend against them.
In our constantly changing digital landscape, all parts need to understand that AI can be a powerful tool in strengthening our digital security. By integrating AI tools into the development and testing phases, developers can build stronger and more secure code from the start, reducing the need for relying on external entities (good ones or bad ones) to identify flaws and vulnerabilities after the release. This approach minimizes the risk of security breaches and the need for post-release security patches.
It’s important to note that the responsibility for cybersecurity goes beyond just individual developers and organizations. Vendors, industry associations, standards agencies, and all stakeholders in the cybersecurity ecosystem must work together to ensure that thorough checks for vulnerabilities and flaws are carried out effectively. AI is not just a technology in this context; it’s a collaborative force that, when used correctly, can strengthen our collective defenses and protect critical IT infrastructures.
By adopting AI as a partner in cybersecurity, we open doors to a more robust and secure digital future. Although the obstacles may seem daunting, the possibilities for innovation and protection are limitless. It is up to us to take advantage of this opportunity, step up to the challenge, and carve a way forward towards a safer cyberspace for future generations.

@Jayesh, I understand that this question was asked back in 2020 when AI was still quite limited in its capabilities, and mostly used in specific areas.

But it’s important to know that AI is progressing rapidly, and it’s going to change a lot of things, especially in cybersecurity. In the future, we might rely more on AI and less on human support. When Quantum computers become mainstream, they could play a big role in controlling AI, acting like a central command centre. This shift is something we should keep an eye on as it could have significant implications for cybersecurity.

To answer this question we need to understand what AI can do better than humans. And currently there are 3 topics: process large amount of different information, perform complex ML tasks and scale unlimited. If we combine these advantages, we can build (security, but not only) AI systems that will process large amount of data from various data sources, self-learn on this data and apply actions in real time with automatic scaling.

Have you lost money to Bitcoin scams and need crypto recovery? If so, it’s essential to act fast and yet to proceed with caution. Cybercriminals who run crypto scams can hide behind anonymous Bitcoin wallets and launder money rapidly on the blockchain.

Although it’s important to move quickly, it’s equally crucial to make the right choice with bitcoin recovery services. There are many services out there that claim to get your money back fast without any hassle. However, too many crypto scam recovery operations are no better than the bitcoin scams they claim to fight against.

So what should you do? Contact Fastfundrecovery8 @Gmail com Or via WhatsApp +1 (903)717 -6241, immediately. They have the skills, tools, and expertise to help you get started with crypto recovery and will empower you to track down the cybercriminals holding your funds. They create thorough crypto investigation reports that will give your claim an advantage and will help authorities find the perpetrators .

AI’s impact on information security and cyber security will be a double-edged sword in the next years.

On one side, AI will boost the defenses by enhanced threat detection, automated security tasks and predictive security.

On the other hand, AI will be part of the offensive threats, allowing for more sophisticated stacks and highly realistic social engineering that will facilitate bypassing human scepticism. Attackers can leverage AI to automate the process of discovering vulnerabilities in software and systems, making it easier to exploit them.

There is a need to stay updated on the latest AI advancements and develop strategies to counter the evolving threats posed by malicious actors who will also be using this technology. AI provides powerful tools for defence, but it also brings new challenges.

I do not believe corporations are ready to spend what they should on cybersecurity, and in a very short time, they will discover it in the worst way possible.