FortiGuard Labs raises alarm over Generative AI and CaaS as cyberattack enablers

FortiGuard Labs

Fortinet released forecasts regarding the cyber threat scenario for the upcoming year and beyond, derived from the worldwide threat intelligence and research team at FortiGuard Labs. The impact of artificial intelligence on the paradigm of cyberwarfare is examined in the 2024 threat predictions report, which also highlights emerging threat patterns that are expected to significantly alter the digital world in the upcoming year and beyond.

In a time when Cybercrime-as-a-Service (CaaS) operations are on the rise and generative AI is becoming more and more prevalent, threat actors have access to a variety of “easy” buttons that make carrying out attacks easier. By taking advantage of the growing capabilities in their arsenals, enemies are ready to step up the level of activity. It is anticipated that the current threat landscape will see an increase in deliberate and covert hacks that are skillfully designed to sneak past strong security measures. This trend emphasizes the critical need for companies globally to strengthen their collective resilience against emerging cybercriminal tactics, methods, and procedures (TTPs), especially in light of greater agility in the execution of attack cycles.

The Development of Timeless Classics

For years, FortiGuard Labs has been tracking popular attack strategies, and the “classics” aren’t going away. On the contrary, as attackers acquire access to fresh resources, they’re changing and growing. Apart from the progression of APT operations, we anticipate that cybercrime organizations will broaden their scope and tactics, emphasizing increasingly complex and disruptive assaults, with a particular focus on denial of service and extortion.

The ongoing “turf wars” in cybercrime see several attack groups focusing on the same targets and launching different ransomware versions, frequently in less than a day. The weaponization of generative AI will stoke an already blazing fire by providing attackers with a simple way to advance several attack phases. Cybercriminals are already using AI more and more to support their illicit activities. Examples of these new uses include mimicking human behaviour and evading the discovery of social engineering.

Getting Around in a New Cybercrime Era

Everyone is affected by cybercrime, and the effects of a breach are frequently extensive. By working together in the public and private sectors to share threat intelligence, standardizing incident reporting procedures, and other means, our security community can better predict the next move of cybercriminals and stop their activities. Disrupting cybercrime is a critical function for organizations as well. The first step in doing this is fostering a culture of cyber resilience by making cybersecurity a priority for all. To do this, continuous efforts like enterprise-wide cybersecurity education programs and more specialized ones like tabletop exercises for leaders can be put into place.

Exit mobile version