IT Brief Australia logo
Technology news for Australia's largest enterprises
Vendor of the week:
Vendor logo
Read More
Story image
Riverbed’s SD-WAN solution boasts enterprise-class routing enhancements
Story image
Altaro introduces WAN-optimised replication for VMs
Story image
14 milestones Workday has achieved in 2018
Story image

Bringing a gun to a gunfight: Countering AI-enabled threats

14 Aug 18
Lew Kai Ping

As artificial intelligence gains traction, organisations are beginning to find enterprise use cases for the technology.

At the same time, cybercriminals are also finding ways to weaponise the technology to execute more sophisticated attacks at a higher volume.

A report by the Electronic Frontier Foundation found that there are several characteristics of AI that lend themselves well to being utilised in cyberattacks: namely its scalability, the ability for its algorithms to be rapidly distributed, and its ability to exceed human capabilities.

Using AI to amplify cyber threats

AI-enabled cyberattacks can expand existing threats, introduce new threats, and alter the typical character of threats, allowing attacks to be more versatile, effective, and targeted.

As an example, AI could influence email attacks such as spear phishing to become more automated – and it could even eliminate the need for the attacker to speak the same language as the target.

It could also target malware’s behaviour that it becomes impossible for humans to control in a manual way.

In response, security experts have turned to the same technology that makes them so effective to combat these threats.

Artificial intelligence can reduce human effort and lower the time needed to detect, respond to, and recover from cybersecurity incidents.

One organisation focusing on this area is LogRhythm’s with its AI-enabled security operations centre CloudAI.

The integration of artificial intelligence with it security operations centre was aimed at realising the following outcomes:

  • Discerning patterns of known threats, on a global, geographic, vertical, and company basis and detecting in real time every observed instance going forward.
  • Discerning with security and risk relevancy the behavioural shifts across the IT environment that predict and detect with accuracy an active or emerging threat.
  • Enabling organisations to perform effective threat hunting – augmenting what is today an art few can effectively perform or afford.
  • Eliminating false negatives with a very low false positive frequency, and present alarms with real time risk context in support of detecting and neutralising threats early in the kill chain.

AI in security applications

User and entity behaviour analytics (UEBA) is a perfect application for machine learning as long as the necessary security context is available for understanding the significance of each anomaly.

Gartner defines UEBA as profiling and anomaly detection based on a range of analytics approaches, usually using a combination of basic analytics methods.

Machine learning can make UEBA considerably more effective for the following reasons:

• Machine learning can handle the volumes of data to be analysed and the environment to be understood. This includes being able to incorporate many types of data sets, from network traffic patterns and application data to records of user authentication attempts and user access to sensitive data.

• Machine learning-driven UEBA is well suited for identifying “qualified” threats—those that are legitimate and require action. Machine learning can take many more factors into consideration than humans can when looking at potential threats, and it can do so in near real time.

UEBA is only one example of the possible applications of artificial intelligence in cybersecurity.

The same characteristics that make it an efficient tool for executing cyber attacks – scalability, versatility, and efficiency at processing large amounts of data in a short time – also make it effective for threat detection, threat response, and against insider threats. 

See how you can detect and stop an insider threat with LogRhythm CloudAI with UEBA.

More:
Share on: LinkedIn Twitter Facebook
Story image
Riverbed’s SD-WAN solution boasts enterprise-class routing enhancements
Story image
Altaro introduces WAN-optimised replication for VMs
Story image
14 milestones Workday has achieved in 2018
Workday customers start deployments to AWS infrastructure
Business software vendor Workday has turned it's previously announced AWS partnership into a reality.
SonicWall secures hybrid clouds by simplifying firewall deployment
Once new products are brought online in remote locations, administrators can manage local and distributed networks.
How to leverage cloud for data-driven business ops
The next gen of cloud-based data platform services are flexible and cost-effective so even small organisations can unlock data insights.
Cisco expands security capabilities of SD­-WAN portfolio
Until now, SD-­WAN solutions have forced IT to choose between application experience or security.
Gartner - Global RPA spending hitting its stride
The biggest adopters of RPA today include banks, insurance companies, utilities and telecommunications companies.
Why mobile web could be a secret weapon for strategy
On mobile, a poor user experience is exacerbated and design flaws are magnified.
AlgoSec delivers native security management for Azure Firewall
AlgoSec’s new solution will allow a central management capability for Azure Firewall, Microsoft's new cloud-native firewall-as-a-service.
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Story image
Zebra finds 10x increase in intelligent APAC enterprises
Second annual survey reveals increased IoT investment, real-time data sharing and front-line empowerment.
Yesterday
Story image
Workday – who are they and what do they do?
We quickly summarise everything you need to know about the up and coming business software leader.
Yesterday
Story image
HPE launches new Datacenter Care capabilities
The company asserts the new capabilities will be delivered by HPE PointNext and will help businesses simplify complex IT environments.
Yesterday
Story image
Sponsored
Impact of legacy technologies on threat alert response and cloud adoption among Aus enterprises
Most Australian enterprises today are hamstrung by the same technologies that once helped advance the nation’s IT economy.
Story image
Sponsored
Five major risks of letting shadow IT go unchecked
A department creating its own bespoke IT solution may sound like a good idea, but are the risks really worth it?
Today
Download image
The six golden keys to successful identity assurance
When someone tries to access your internal systems, how can you be sure a user is who they claim to be?
Download
Story image
Don’t let your network outgrow your IT team
"IT professionals spend less than half of their time at work optimising their networks and beefing it up against future security threats."
Link image
How Equinix optimised Carsales.com applications across regions
As part of its regional expansion, the company faced integration challenges due to the inheritance of disparate technology capabilities.
Find out more
Story image
Sponsored
The importance of workflow automation in a modern business
"Intuitive, integrated, and collaborative processes are hugely important to the success of an organisation."
Download image
Tips for building a safer and more secure flexible workplace
Predictive reporting and real-time location data can optimise your space requirements.
Download
Story image
Why the mobility industry is moving towards 5G
Reliable and timely radio performance is a crucial requirement for all those with a stake in transport safety.
Story image
Dropbox strengthens security with raft of new partnerships
Integrations will keep customer content protected and secure with tools for controlling identity access, governing data, and managing devices.
Download image
Whitepaper: Everyday network issues PRTG network monitor helps resolve
Your IT infrastructure needs a constant review in order to ensure the health of your system.
Download
Download image
Using SOLIDWORKS CAD to take an idea from prototype to product
Sound pioneer Nura had an ambitious concept to deliver when it raised almost two million dollars via crowdsourcing and then over five million dollars through a seed round.
Download
Story image
Exclusive: Fileless malware driving uptake of behavioural analytics
Fileless malware often finds its way into organisations via web browsers (or in combination with other vectors such as infected USB drives).
Story image
It's time to rethink your back-up and recovery strategy
"It is becoming apparent that legacy approaches to backup and recovery may no longer be sufficient for most organisations."
Download image
GDPR compliance: A step-by-step guide
The GDPR affects any company that deals with individuals living in the EU and has very specific requirements for the treatment of their personal
Download
Link image
Start your company’s mobile innovation journey here
Mobile Mentor is transforming the way people work by putting app building at their fingertips
Read more
Download image
The features that should be front and centre when evaluating SIEMs
According to Frost & Sullivan, SIEM can either be an enabler or a retardant and there's a thin line between the two - here's the key attributes.
Download
Link image
How businesses can benefit from hybrid cloud
In this short video, Equinix details how businesses can interconnect private and public clouds to create a hybrid infrastructure and get the best of both worlds.
Find out more
Story image
Sponsored
Cyber crisis continues unabated – is ATP the answer?
Statistics on cybercrime certainly makes for grim reading, and that is set to continue unless businesses take measures to stack the odds better in their favour.
Today
Story image
Why you should leverage a next-gen firewall platform
Through full lifecycle-based threat detection and prevention, organisations are able to manage the entire threat lifecycle without adding additional solutions.
Story image
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
Story image
The quid pro quo in the IoT age
Consumer consciousness around data privacy, security and stewardship has increased tenfold in recent years, forcing businesses to make customer privacy a business imperative.
Link image
Increase visibility and productivity with fleet tracking software
Know what’s going on in the field so you can dispatch more efficiently, improve customer service and reduce time spent calling drivers for updates.
Read more
Download image
Cutting through the noise with AI-driven threat analytics
SANS has provided an independent review of a new AI analytics solution designed to rescue businesses 'drowning in data' from SIEM platforms.
Download
Download image
The security tool conundrum: Can you have too much of a good thing?
Organisations across Asia Pacific are using many different security tools to protect their businesses, but often they have no centralised platform to manage those tools.
Download
Story image
Bitdefender announces security integration with Kaseya
The new partnership will allow VSA by Kaseya’s cloud and on-premises users to deploy and manage security with Bitdefender Cloud Security for MSPs.
Story image
Cisco and AWS collaborate for hybrid cloud platform
News has emerged of more data centre giants forging public cloud partnerships.
Download image
Whitepaper: How to build cloud policies your organisation can stand by
Done right, digital transformation can transform the way governments engage with citizens, make businesses more productive and help non-profits be more effective.
Download
Story image
VMware’s bid to accelerate enterprise adoption of Kubernetes
“Kubernetes is emerging as an open framework for multi-cloud infrastructure that enables business transformation."
Download image
Whitepaper: How to detect and respond to threats faster
This white paper uncovers how UEBA reduces your organisational risk and enables you to respond more quickly to attacks.
Download
Story image
Sponsored
Interview: Mobile Mentor’s long term future with Microsoft
Mobile Mentor is Co-Sell Ready: We quizzed founder Denis O’Shea on what the news means for Mobile Mentor, its partnership with Microsoft, and the company’s growth plans for the future.
Story image
Three access management trends making waves in APAC
Consumer identity proofing, authentication, and authorisation will top the $37 billion value mark by 2023.
Story image
Sponsored
Interview: Mobile Mentor CEO shares mobility strategies
“We recognise that mobile speed is ultrafast!  We’re not really focused on the competition, but we look to do two things really well."
Yesterday
Story image
Sponsored
Working with normalised SQL Tables – a guide
The goal of this workshop post is to explain a method for working with normalised SQL data in PowerApps.
Story image
Forrester’s 14 quick tech predictions for 2019
Forrester weighs in on 2019 predictions, looking at how organisations will shift into a more precise application of transformative technologies.
Story image
DXN continues colocation charge with two senior appointments
The company has a vision to expand firstly across Australia and then ultimately Asia.
Link image
Create custom, enterprise-grade mobile apps to accelerate workflows
Mobile Mentor assists organisations with the process from start to finish and keeps the backend up-to-date after the app is completed.
Read more
Story image
DXN begins shipping modular data centres in AU – next stop Asia
Pre-fabricated modular data centres have gained traction in recent times, and it's something DXN is looking to capitalise on in APAC.
Story image
Dell Boomi expands its enterprise iPaaS portfolio
"Dell Boomi's ability to connect data, processes and people has an extremely positive impact on the experience Sky provides."
Download image
Is your security really secure?
ot so long ago a firewall and a virus scanner were enough to protect a network, but today the scene is much different. 
Download
Download image
What does sustainable compliance look like?
Getting an organisation compliant is one thing, keeping it that way is another.
Download
Story image
NEXTDC partnering with Superloop to bring Asia and AU closer
NEXTDC’s customers will be among the first to take advantage of APAC’s shortest submarine cable route between Sydney and Singapore.
Yesterday
Story image
When good tech goes bad - the challenge of complexity
Beautiful system tapestries have created confusing labyrinths that people have to navigate just to get their job done, wasting time and energy.
Story image
Sponsored
Interview: Building secure apps from the ground up
Security should be a key consideration from the initial design phase before any build even begins.
Story image
Sponsored
Case study: Startup revamps systems with HID mobile access
“We want our clients to have the best experience here. This is the reason why we chose to work with HID Global solutions."
Story image
Get ready to ride the new wave of WiFi
With the increasing demand for wireless internet in every space, it is time be thinking about how the inevitable next-generation of WiFi will look.
Story image
Sponsored
Modernising your ERP could unlock a potential goldmine
Businesses with the wrong or outdated ERP systems are being deprived of insights and capabilities to drive their business forward.
Story image
NEXTDC adds 9MW customer contracts at new Sydney data centre
“The demand for our data centre services continues to accelerate and exceed our expectations, particularly in the Sydney market."
Download image
Whitepaper: What are the best practices for choosing credential technology?
Have security professionals and end-users evolved alongside credential technology?
Download
Story image
Why an ecosystem platform is critical to business growth
"The right ecosystem platform can help businesses become more agile."
Story image
Sponsored
You’re invited: Getting proactive about security - an Empired webinar
We all know that proactive security is the best security, but what does that look like? Don’t miss your chance to find out.
Story image
Connected humans and the quest for health, wealth and happiness
"By 2020 it’s estimated there will be more than 20 billion connected devices in use."
Story image
Sponsored
Gartner names Silver Peak Leader in WAN Edge infrastructure
Gartner’s WAN Edge Infrastructure Magic Quadrant names Silver Peak among the leaders in a growing market.
Yesterday
Story image
Five digital trends that will dominate the enterprise landscape in 2019
Evolving technology and data trends are paving the way to significant IT and network architecture changes in 2019.
Story image
How CTOs can get the most out of their performance metrics
"Industry research suggests that deploying and managing networking infrastructure consumes a whopping 36% of IT budgets."
Story image
Aussie innovation lagging despite transformation buzz
24% of Australian IT professionals say that innovation is neither encouraged or rewarded at their company, according to an AppDynamics report.
Story image
Sponsored
The six success factors for successful smart card migration
Smart cards are easy to carry around, can be programmed and reprogrammed remotely, and offer a secure way for students and teachers alike to access campus facilities.
Download image
Whitepaper: An inside look at the benefits of cloud
"Cloud computing is revolutionising business, enabling organisations to move faster, spend less and deliver greater value."
Download
Story image
Sponsored
Huge vulnerabilities in software supply chain being exploited
A very exposing report has revealed breaches are rising and response times are falling, largely due to shoddy software development practices.
Story image
How Azure can encourage digital innovation
Gap is working with Microsoft to migrate hundreds of applications to Azure, focusing on a seamless customer experience.
Story image
Why Huawei's SD-WAN solution is causing a fuss
Huawei provides customers with a broad array of WAN edge functions.
Story image
Ransomware infection? Here’s how you control the damage
Ransomware has evolved to be more sophisticated and targeted, and remains a threat to businesses of all sizes.
Story image
Hands-on review: TablePlus database management app for Mac
TablePlus is a new desktop application developed with the goal to make database management easier, faster, and more efficient.
Download image
Whitepaper: Automation platforms giving companies better insights on data
451 Research has produced an analysis sponsored by Nintex on how automation is increasingly being used to transform businesses.
Download
Download image
Survey: App dev is surging, but how are businesses doing it?
Today “every company is in the software business" to get a competitive edge, and this survey reveals how app dev is affecting IT teams.
Download
Download image
Whitepaper: Why it’s critical to detect cyber attacks as they happen
"Many organisations are struggling to keep pace with the speed in which hackers are attacking their systems."
Download
Story image
Intel drafts model legislation to spur data privacy discussion
In a white paper published last month, Intel’s Global Privacy team laid out six policy principles for safety and privacy in the age of AI.
Story image
Digital transformation an almost $2 trillion industry by 2022
"The unprecedented speed at which technologies are coming to market supporting DX strategies can only be described as frantic."
Yesterday
Story image
Sponsored
Using analysis to save on IT maintenance costs
Ill-fitting maintenance plans, whether over- or under-prescribed does cost you money - but, with a little analysis you can save a lot.
Story image
Opinion: Strategies for avoiding digital transformation failures
Dell Boomi APJ's MD says digital transformation journeys are rife with potential disasters.
Story image
Sponsored
Is a low-code app building approach what your organisation needs?
Microsoft PowerApps is a service that lets you build business apps that run in a browser or on a phone or tablet, and no coding experience is required.
Story image
5G expected to hit A/NZ by 2020, according to MIT
According to a report by MIT Technology Review Insights, APAC is well on the way to being a digital landscape with 5G just around the corner.
Download image
IT's rising role in physical access control - what you need to know
T and physical security teams are now required to consider fundamental change in day-to-day operations.
Download
Download image
Top 10 challenges facing MSPs – and how to overcome them
In a perfect world all businesses would happily invest enough to protect their data, but it’s not, which is why Probax released a guide.
Download
Story image
Samsung joins a global league of AI experts
“As a member of the PAI, Samsung will strive to facilitate the ongoing progress of artificial intelligence.”
Download image
Whitepaper: Threat detection and risk measurement with machine learning
ResponSight focuses on two key areas of cybersecurity – threat detection and enterprise risk measurement – and the need for more sophisticated approaches in each.
Download
Story image
Gartner’s top 10 IoT tech trends
“CIOs who master innovative IoT trends have the opportunity to lead digital innovation in their business.”
Story image
Informatica releases its next-generation iPaaS in APAC
Enterprises in APAC can now leverage Informatica’s iPaaS, which delivers a secure microservices-based solution.
Download image
Whitepaper: The evolution of physical access control
Despite the enhanced security and convenience that comes from newer options, many organisations are still using outdated and vulnerable access control technology.
Download
Download image
Avoid underutilising office space with optimisation solutions
Facility managers and security professionals need a real-time view of how their workforce interacts with a building.
Download
Story image
Sponsored
How to effectively implement a software-defined secure network
The unified SDSN platform combines policy, detection, and enforcement with a comprehensive product portfolio.
Download image
Whitepaper: The key to compliance is governing access to data
By implementing a governance-based approach to identity governance, companies can secure their organisation’s sensitive data.
Download
Story image
Sponsored
Paessler protects world’s most precious computing artefacts
Without air conditioning, The National Museum of Computing must keep a close eye on environmental factors like temperature, humidity, and UV light levels.