AI in cyber securityAI in cyber security: a help or a hindrance? Sagar Gujarati |Feb 18, 2019

Arguably, AI has the potential to provide an extremely large benefit to the overall framework of an organisation’s cyber security defence. However, the reality is that it also has the potential to be a real danger under certain conditions as hackers are fast gaining the ability to foil security algorithms by targeting the data AI technology is training on and the issues it is able to flag.

The fact is, AI has the possibility of being deployed by both sides: those looking to attack and those looking to defend. Of course, AI can be beneficial in a number of ways. Mainly, it has the ability to learn and adapt to its current environment and the threat landscape. If deployed correctly, AI would be able to consistently collect intelligence regarding new threats, attempted attacks, successful breaches, blocked or failed attacks and learn from all of it.

Additionally, AI technology has the ability to pick up abnormalities within an organisation’s network and flag it quicker than a member of the cyber security or IT team could; AI’s ability to understand ‘normal’ behaviour would allow it to bring attention to potentially malicious behaviour of suspicious or abnormal user or device activity.

Wanna Cry RansomwarePrevent it from affecting your pc Sagar Gujarati |Jul 3, 2017

It has been reported that a new ransomware named as "Wannacry" is spreading widely. Wannacry encrypts the files on infected Windows systems. This ransomware spreads by using a vulnerability in implementations of Server Message Block (SMB) in Windows systems. This exploit is named as ETERNALBLUE.

The ransomware called WannaCrypt or WannaCry encrypts the computer's hard disk drive and then spreads laterally between computers on the same LAN. The ransomware also spreads through malicious attachments to emails.

In order to prevent infection, users and organizations are advised to apply patches to Windows systems as mentioned in Microsoft Security Bulletin MS17­010.

AnonTech cyber-security blogs