The role of artificial intelligence (AI) in the realm of cybercrime has become increasingly prominent, with cybercriminals leveraging AI tools to execute successful attacks. However, defenders in the cybersecurity field are actively combating these threats. As anticipated by cybersecurity experts a year ago, AI has played a pivotal role in shaping the cybercrime landscape in 2023, contributing to both an escalation of attacks and advancements in defense mechanisms. Looking ahead to 2024, industry experts anticipate an even greater impact of AI in cybersecurity.
The Google Cloud Cybersecurity Forecast 2024 highlights the role of generative AI and large language models in fueling various cyberattacks. According to a KPMG poll, over 90% of Canadian CEOs believe that generative AI increases their vulnerability to breaches, while a UK government report identifies AI as a threat to the country's upcoming election.
Although AI-related threats are still in their early stages, the frequency and sophistication of AI-driven attacks are on the rise. Organizations are urged to prepare for the evolving landscape.
Cybercriminals employ four primary methods utilizing readily available AI tools such as ChatGPT, Dall-E, and Midjourney: automated phishing attacks, impersonation attacks, social engineering attacks, and fake customer support chatbots.
AI has significantly enhanced spear-phishing attacks, eliminating previous indicators like poor grammar and spelling errors. With tools like ChatGPT, cybercriminals can craft emails with flawless language, mimicking legitimate sources to deceive users into providing sensitive information.
Impersonation attacks have also surged, with scammers using AI tools to impersonate real individuals and organizations, conducting identity theft and fraud. AI-powered chatbots are employed to send voice messages posing as trusted contacts to extract information or gain access to accounts.
Social engineering attacks are facilitated by AI-driven voice cloning and deepfake technology, creating misleading content to incite chaos. An example involves a deepfake video posted on social media during Chicago's mayoral election, falsely depicting a candidate making controversial statements.
While fake customer service chatbots are not yet widespread, they pose a potential threat in the near future. These chatbots could manipulate unsuspecting victims into divulging sensitive personal and account information.
In response, the cybersecurity industry is employing AI as a security tool to counter AI-driven scams. Three key strategies include developing adversarial AI, utilizing anomaly detection to identify abnormal behavior, and enhancing detection response through AI systems. By creating "good AI" and training it to combat malicious AI, the industry aims to stay ahead of evolving cyber threats. Anomaly detection helps identify deviations from normal behavior, while AI systems in detection response enhance the rapid identification and mitigation of legitimate threats.
Overall, as AI tools continue to advance, both cybercriminals and cybersecurity experts are leveraging AI capabilities to shape the future of cybercrime. It is imperative for the industry to stay vigilant and adapt to emerging threats in order to effectively mitigate the risks associated with AI-driven attacks.
