Skip to content

Generative AI in Cybersecurity: Balancing Performance Gains and Growing Risks

With the proliferation of generative AI tools like ChatGPT, Chief Information Security Officers (CISOs) are grappling with the challenge of harnessing performance benefits while mitigating unknown risks. Discover how gen AI is transforming cybersecurity.

The advent of generative AI, exemplified by tools like ChatGPT, has revolutionized cybersecurity. However, this transformation comes with a double-edged sword, offering increased precision in cybersecurity while also empowering malicious actors with new attack tools like FraudGPT.

This article explores the delicate balance between performance gains and escalating risks in the world of gen AI cybersecurity.

CISOs face the formidable task of weighing the performance improvements brought by gen AI against the uncharted risks it introduces. As gen AI contributes greater accuracy to cybersecurity, it is simultaneously weaponized into tools such as FraudGPT, promising ease of use for the next wave of cyber attackers.

The market value of gen AI-based cybersecurity platforms, systems, and solutions is forecasted to skyrocket from $1.6 billion in 2022 to $11.2 billion in 2032. Canalys predicts that within five years, generative AI will underpin over 70% of business cybersecurity operations.

Gen AI attack strategies predominantly center on gaining control over identities. A substantial portion of security breaches, 75% according to Gartner, is attributed to human errors in managing access privileges and identities. Attackers aim to exploit these human errors using gen AI.

Michael Sentonas, President of CrowdStrike, emphasizes the critical role of connecting endpoints with identity and data access. Solving identity-related challenges is pivotal in addressing a significant portion of cybersecurity concerns within organizations.

Leading cybersecurity companies are intensifying their efforts to integrate gen AI applications into their products and services. Palo Alto Networks, for instance, is committed to deploying precision AI across its offerings, aiming to enhance customer security by collecting valuable data collaboratively.

In the face of gen AI-based threats, achieving cyber-resilience and self-healing endpoints is essential. Resilience in cybersecurity adapts to an organization's evolving requirements, providing a framework to combat emerging threats effectively.

Preparation involves developing muscle memory for dealing with large-scale breach attempts, utilizing AI and machine learning algorithms that learn from each intrusion attempt.

Security operations centers (SOCs) are witnessing increasingly sophisticated social engineering, phishing, malware, and business email compromise (BEC) attacks attributed to gen AI. Implementing zero-trust principles helps reduce these emerging risks.

Microsegmentation, a core component of zero trust, is benefiting from gen AI's potential, with startups driving innovation in this area. Continuous monitoring and testing of systems in development are critical to uncover potential vulnerabilities.

Security must be embedded throughout the software development lifecycle (SDLC) to combat gen AI-based threats effectively. API security takes precedence, with automated testing and security monitoring in all DevOps pipelines.

A zero-trust approach must be adopted for every interaction with gen AI applications, platforms, tools, and endpoints. Continuous monitoring, dynamic access controls, and always-on verification are vital components of this strategy.

As generative AI continues to reshape the landscape of cybersecurity, the challenge of balancing performance gains and growing risks looms large for CISOs. While gen AI offers unprecedented precision, it also fuels the development of sophisticated attack tools.

By adopting a zero-trust approach, bolstering cyber-resilience, and embracing innovative security practices, organizations can prepare themselves to combat the evolving threats posed by gen AI-based attacks.

In the evolving landscape of cybersecurity, vigilance, innovation, and adaptability remain key in safeguarding digital assets and data from gen AI-driven threats.