Skip to content


Growth Drivers | November 4, 2024

Cybersecurity and AI: Threats and Opportunities

 

AI has captured the imagination of people and organisations around the world. However, alongside its advancements, AI brings forth a myriad of security challenges that cannot be ignored.

 


 

AI as a tool for cybercriminals

 

As AI systems become increasingly sophisticated and pervasive, cybercriminals are harnessing its power to launch more sophisticated and targeted attacks.

For example, phishing emails have evolved from simple deceptive emails to ones that have become more advanced, harder to spot and significantly more dangerous. Attackers are also successful at using methods like deepfakes — a form of AI that can be used to create convincing hoax images, sounds and videos — to perpetrate fraud or manipulate an audience into action. 

And AI's adaptive nature is one of its most potent features in social engineering attacks, which manipulate people into giving away sensitive information or compromising security.  

By using AI in these attacks, cybercriminals can appear more credible and trustworthy, leading more victims to fall for fraud attempts or manipulation, which could lead to system compromise.


40% of all phishing emails targeting businesses are now generated by AI according to VIPRE Security Group.


 

Empowering defenders at the speed of AI

 

At its heart, AI recognises patterns and abnormalities in massive datasets — that is why it is such an important component of modern cybersecurity.

For example, AI enhances threat detection through advanced pattern recognition and anomaly detection. Unlike traditional methods, AI can analyse vast amounts of data in real-time, identifying threats that might be missed by human analysts. This leads to faster incident response times and reduces the window of opportunity for cybercriminals. 

AI also enables predictive analytics, allowing businesses to anticipate and mitigate potential threats before they materialise. By analysing historical data and identifying trends, AI systems can provide insights into future attack vectors, enabling proactive defense strategies. 

For example, DXC is working with Microsoft product teams to help shape Microsoft Security Copilot: a generative AI-powered security solution that helps increase the efficiency and capabilities of defenders to improve security outcomes.


 

44% of organisations can confidently identify ways AI could strengthen their security systems (Ponemon Institute).


 

AI as a force multiplier

 

As organisations confront the complexities of escalating cyber threats, they need people with the right skills to protect their data and systems.  

The good news is AI can work as a force multiplier for smaller security teams, which gives organisations a better chance against the newest strains of cyber risk.  

This is not meant to replace valuable and scarce expertise, but rather augment it by using AI to support overtaxed security analysts, identity management professionals and incident responders who need to sort through an increasing amount of information to do their jobs. 

 

50% of organisations say they're using AI to compensate for a cybersecurity skills gap according to the Ponemon Institute.

 

For example, the integration of AI in security operations centers automates repetitive and time-consuming tasks. AI can handle routine monitoring, data analysis, and initial incident responses, freeing up human analysts to focus on more complex issues and higher-value tasks.  

This not only increases efficiency but also improves the accuracy and reliability of security operations.  







 

The big picture

AI's role in cybersecurity is paradoxical: a tool for both attackers and defenders. The same capabilities that make AI a powerful ally in the fight against cybercrime can also be exploited by malicious actors to develop more sophisticated and targeted attacks.

DXC Technology recognises that there will be no one-size-fits-all method to safeguarding the use of AI, just as there is no one-size-fits-all approach to security. Every organisation has distinct requirements. 

Our teams assist customers in securing their environments by first analysing and mapping threat models and vectors, identifying new technologies they are embracing, and putting in place the essential safeguards to keep the company secure.


More growth drivers

Five security trends shaping the future

What do the next few years hold for us? Here are five emerging trends that DXC CISO Mike Baker identified as transforming how we defend against cyber threats.

The power of digital identity

The number of digital identity verification checks is expected to surpass 70 billion during 2024. And no wonder. Digital identity has become crucial in safeguarding user security.

Preparing for an AI future

As AI and emerging technologies reshape the business landscape, companies with outdated systems and approaches must evolve or risk getting left behind. Here’s how.