Can generative AI be an ally in rooting out ransomware threats?

Cybersecurity analysts and system defenders can use AI to detect new malicious attacks and classify and identify new means of attack from bad actors, according to Elsayed. Simulating with hackers might allow for creating possible attack scenarios and learning to think like attackers to offer more robust tools for defense, she adds.

“It’s a way to generate a combination of possible attacks system defenders might not have considered,” she says.

Elsayed adds a practical example could be a user pasting a suspicious email into a generative AI system and asking about the validity of the email. AI could help screen and catch red flags: a suspicious logo or misspellings.

“AI can become an early warning or screening tool,” she says.

In order for AI to be an important tool, Elsaye says that explainability such as why AI considers an item a phishing email is important in building trust among users. Elsayed said governance and responsible use of AI is a necessity as it can be considered a “double-edged sword.”

“We need governance, rules, policies and a kind of code of conduct,” she adds. “Defining best practices and specifying how AI should be used in an organization are necessities. It is possible to build long-term cybersecurity resilience using AI."

AI will never replace humans but it can change our work patterns, notes Elsayed, adding that AI has long been part of daily lives in areas such as medical imaging with early detection of disease like lung cancer and facial recognition in smartphones.

“Generative AI made AI more visible, but AI itself is not new,” says Elsayed.

Read about trends in cybersecurity in Securities.io.

Learn more about Dr. Nelly Elsayed online.

Featured top image from iStock.