Google AI Tools Identify AI-Driven Cyberattacks

Cybercriminals are using AI-powered tools to refine their attack techniques, reducing the time typically spent on malware creation and improving its effectiveness. To address this issue, Google hosted a dark web expedition to demonstrate the ease with which cybercriminals can sell compromised information, access sophisticated malware codes, and, more importantly, how to counteract them.

The dark web serves as a vast marketplace for cybercriminals looking to improve their attacks and sell stolen data while maintaining anonymity. Cybercrime goods and services available on the dark web include the destruction of information, breach of confidential information, illicit sale of intellectual property, and fraud. Despite an expanding portfolio, ransomware attacks remain the most popular service due to its high success rate, according to Adolfo Grego, CTO and CISO, Grupo RF.  

When aided by AI, ransomware attacks become a formidable risk to digital users and software developers, as “the defensive cryptographic behavior closely mirrors the offensive cryptographic behavior exhibited by ransomware attacks,” explained Grego. This resemblance allows AI-powered ransomware attacks to elude even the most advanced identity identification methods available to IT specialists. When successful, these attacks can result in operational downtimes, reputational damage, and substantial financial losses.

“Generative AI allows cybercriminals to carry out scalable and automatable attacks with remarkable simplicity,” says Grego. This emerging technology enables individuals, even those without specialized expertise, to execute sophisticated attacks that were once time-intensive to devise. Market demand from non-technical users has inspired new services on the dark web including the ability to rent or hire a hacker’s services for a specific task. 

The added effect of AI-powered tools has spurred the development of tools specifically designed to enhance hackers’ attacking techniques, such as WormGPT, FraudGPT, XXXGPT and WolfGPT. FraudGPT, for example, enables cybercriminals to orchestrate realistic social engineering attacks, while WormGPT is adept at crafting malicious code, generating phishing emails, and disseminating false information. XXXGPT facilitates the creation of convincing audio and video deepfakes, and WolfGPT provides criminals with confidentiality to create potent cryptographic malware that is exceptionally challenging to detect.  

To mitigate these potential cyberattack risks, Mary Pily Loo Castillo, Manager Operational and Technology Risk Supervision, CNBV, advises organizations and users to implement robust disaster recovery measures. This includes continuous system monitoring, penetration testing protocols, and regular system backups. For companies with limited cybersecurity infrastructure, Castillo recommends employing third-party vendors with cybersecurity certifications. Nevertheless, despite the effectiveness of these measures in securing digital environments, human errors persist as the most prevalent threat to a company's cybersecurity. 

In fact, “many of the ransomware attacks studied today have been the product of a human error on the part of employees clicking on compromised files,” says Castillo. This underscores the importance of cybersecurity awareness among employees in bolstering the resilience of an organization’s cybersecurity posture, agreed the panelists. 

Despite this outlook, AI-powered tools can also help users and organizations fortify their digital defenses. Google, for instance, has introduced an adaptive protection tool within its Cloud Armor application. This tool aims to enhance the detection, analysis, and mitigation strategies against sophisticated attacks, such as Distributed Denial of Service (DDoS) attacks. Google representatives added that AI-driven tools can also help companies automate malware detection through pattern recognition of abnormal behavior, identify malware hidden behind textual data, and potential phishing scams targeting employees with low cybersecurity awareness. 

"Artificial intelligence has transcended predictability to become a multifaceted entity. Consequently, we must explore new solutions in the market, as a successful cyberattack can have severe repercussions for both business and personal security," stated Pablo Corona Fraga, Director Data Privacy & Protection, NYCE. 

Are you ready to set yourself up for success in 2024? Join us at Mexico Business Summit 2023, the must-attend B2B conference for Mexico’s business leaders!
Taking place on Nov. 28-30, 2023, at Expo Santa Fe in Mexico City, this high-level multi-industry conference offers unmatched opportunities to get inside perspectives on key industry trends, access actionable business intelligence, generate pre-qualified leads and identify new opportunities in a unique cross-industry networking environment.
Mexico Business News offers you an exclusive MX$2,000 ticket discount by using this code: MBS2023MBN2000. 
Don't miss this opportunity and get your tickets here: https://mexicobusiness.events/MBS/2023