menu
techminis

A naukri.com initiative

New

google-web-stories
Home

>

Info. Security News News

>

Cybercrimi...
source image

Securityaffairs

1M

read

269

img
dot

Image Credit: Securityaffairs

Cybercriminals Are Targeting AI Conversational Platforms

  • Resecurity reports a rise in attacks on AI Conversational platforms, targeting chatbots that use NLP and ML to enable automated, human-like interactions with consumers.
  • Chatbots are designed to simulate human conversations and enhance user experiences. Bots collect valuable data from users, which can be analyzed to gain insights into customer preferences and behaviors, however, data collected from users may reveal sensitive information due to personalized interactions.
  • AI-powered Call Center Software and Customer Experience Suites use purpose-built chatbots to interact with consumers, which is especially significant in fintech and e-commerce industries.
  • Cybercriminals could orchestrate advanced fraudulent activities and apply data and extraction techniques to acquire records of interest and use them in advanced phishing scenarios and other cyber offensive purposes by gaining access to conversational AI platforms.
  • The compromised data could lead to hijacking where bad actors could intercept the session and control the dialogue further leading to fraudulent schemes.
  • Resecurity forecasts a variety of social engineering schemes that could be orchestrated by abusing and gaining access to trusted conversational AI platforms.
  • The experts from Resecurity outlined the need for AI trust, risk, and security management (TRiSM), as well as Privacy Impact Assessments (PIAs) to identify and mitigate potential impacts.
  • The EU AI Act and other regulatory frameworks in North America, China, and India are already establishing regulations to manage the risks of AI applications. Businesses have to ensure that AI systems are trustworthy, thereby providing consumers with confidence in how their personal data is used.
  • Conversational AI platforms have already become a critical element of the modern IT supply chain for major enterprises and government agencies.
  • Businesses need to pay increased attention to supply chain cybersecurity and balance between traditional cybersecurity measures relevant to SaaS (Software-as-a-Service) and those specialized and tailored to the specifics of AI.

Read Full Article

like

16 Likes

share

3 Shares

For uninterrupted reading, download the app