FEATURE
Paul Drake, Regional Vice President Sales, UK & I at Barracuda Networks
defensively by organisations in order to keep pace. There are a couple of key areas where AI could be used to support the security team in the fight against malicious AI.
The first is using AI to improve threat detection. For instance, behavioural AI can allow security teams to learn typical user behaviours across email and collaboration apps – like their login and device usage patterns, how they typically write their messages, or who they ordinarily interact with.
With a baseline of known behaviours, AI models can then flag up deviations signalling a potential attack. This helps overcome the limitations of many traditional security solutions that rely on detecting known indicators of compromise – something many attackers have learned to omit through social engineering techniques.
There is also an opportunity to use AI to help automate repetitive workflows, enabling security teams to focus on more impactful tasks like investigating high fidelity alerts or threat hunting. For example, manually triaging userreported phishing emails can consume hours of skilled analyst time, even though the majority of user-reported phishing emails are ultimately deemed safe. emails deemed a legitimate threat) can accelerate this workflow and free up SOC analyst time for more strategic tasks.
By leveraging AI, organisations can detect threats faster, automate responses and reduce operational strain on security teams. Security professionals can shift from a reactive to a proactive stance, stopping cyberthreats before they cause damage.
Paul Drake, Regional Vice President Sales, UK & I at Barracuda Networks
Businesses face an ongoing battle against threat actors intent on fraud – from the scammers trying to get hold of money or data they’ re not entitled to, to malicious intruders attempting to gain access to places they’ re not supposed to be.
For many of these cybercriminals, the easiest and most accessible route to a victim is via email. Email-based attacks like phishing can be highly effective, and the tools and techniques the attackers use are increasingly advanced thanks to well-resourced Phishing-as-a-Service( PhaaS) platforms. The use of Generative AI allows attackers to craft highly personalised and contextually relevant messages, increasing their chances of success.
Using automation to inspect and evaluate userreported emails( and to automatically remove
Luckily, AI is not just being used by the criminals. Most security vendors are actively implementing
34 www. intelligentbuild. tech