AI is at the forefront of this change, and has the potential to empower organizations to defeat cyberattacks at machine speed, address the cyber talent shortage, and drive innovation and efficiency in cybersecurity.
Adversaries can use AI as part of their exploits, and it's never been more critical for us to both secure our world using AI and secure AI for our world.
Today we released the sixth edition of Cyber Signals, spotlighting how we are protecting AI platforms from emerging threats related to nation-state cyberthreat actors.
In collaboration with OpenAI, we are sharing insights on state-affiliated threat actors tracked by Microsoft, such as Forest Blizzard, Emerald Sleet, Crimson Sandstorm, Charcoal Typhoon, and Salmon Typhoon, who have sought to use large language models to augment their ongoing cyberattack operations.
This important research exposes incremental early moves we observe these well-known threat actors taking around AI, and notes how we blocked their activity to protect AI platforms and users.
We are also announcing Microsoft's principles guiding our actions mitigating the risks of nation-state Advanced Persistent Threats, Advanced Persistent Manipulators, and cybercriminal syndicates using AI platforms and APIs.
These principles include identification and action against malicious threat actors' use notification to other AI service providers, collaboration with other stakeholders, and transparency.
Microsoft is helping the wider security community to understand and detect the emerging prospects of LLMs in attack activity.
This strategic expansion reflects a commitment to not only track and neutralize threats, but also to pioneer the development of countermeasures in the evolving landscape of AI-powered cyber operations.
This edition of Cyber Signals shares insights into how threat actors are using AI to refine their attacks and also how we use AI to protect Microsoft.
Although threat actors' motives and sophistication vary, they share common tasks when deploying attacks.
Microsoft uses several methods to protect itself from these types of cyberthreats, including AI-enabled threat detection to spot changes in how resources or traffic on the network are used; behavioral analytics to detect risky sign-ins and anomalous behavior; machine learning models to detect risky sign-ins and malware; Zero Trust, where every access request has to be fully authenticated, authorized, and encrypted; and device health to be verified before a device can connect to the corporate network.
Generative AI has incredible potential to help all defenders protect their organizations at machine speed.
From enhancing threat detection to streamlining incident response, AI's capabilities are reshaping cybersecurity.
These models can analyze vast amounts of data to uncover patterns and trends in cyberthreats, adding valuable context to threat intelligence.
Users of Microsoft Copilot for Security have shown a 44% increase in accuracy across all tasks and a 26% faster completion rate.
These figures highlight the tangible benefits of integrating AI into cybersecurity practices.
AI is not just a tool but a paradigm shift in cybersecurity.
It empowers us to defend against sophisticated cyberthreats and adapt to the dynamic threat landscape.
To learn more about Microsoft Security solutions, visit our website.
This Cyber News was published on www.microsoft.com. Publication date: Thu, 15 Feb 2024 21:13:04 +0000