A naukri.com initiative
VentureBeat
1M
220
Image Credit: VentureBeat
51 seconds to breach: How CISOs are countering AI-driven, lightning-fast deepfake, vishing and social engineering attacks
- Attackers can breach a network and move laterally in just 51 seconds, using stolen credentials to evade detection.
- AI enables attackers to create vishing, deepfake, and social engineering attacks quickly and efficiently.
- Vishing attacks have grown significantly, with a 442% increase in 2024, becoming a prominent method for gaining sensitive information over the phone.
- Phishing remains a threat, with AI-generated content having a higher click-through rate compared to human-generated content.
- Identity-based attacks are on the rise, with 79% of attacks in 2024 being malware-free and leveraging stolen credentials and AI-driven methods.
- AI technology is being used by adversarial groups like Chinese Green Cicada and North Korea’s FAMOUS CHOLLIMA for creating fake accounts and profiles to infiltrate systems.
- To combat AI-driven attacks, organizations like National Oilwell Varco are implementing solutions for revoking access quickly and emphasizing authentication of every identity and session.
- Lessons for countering fast breaches include cutting off attacks at the authentication layer, using AI-driven threat detection, and unifying endpoint, cloud, and identity security.
- Zero trust principles, such as segmentation and verifying identities, are crucial in defending against lightning-fast AI attacks.
- Employing AI for threat detection, revoking tokens promptly, and implementing zero trust strategies are effective measures in combating AI-driven attacks.
- Security leaders emphasize least privileged access, network segmentation, and continuous identity verification to defend against fast-moving cyber threats.
Read Full Article
13 Likes
For uninterrupted reading, download the app