FINAL WORD with the introduction of some additional security features in AD . For defenders , it is good to see that there is a bigger focus placed on identity protection .
AI security tools will get worse before they get better
While AI is helping fuel nefarious activity for bad actors , defenders are also leveraging the tool to fight back . Nearly every new ( and many existing ) cyber vendor infuse AI or large language models ( LLMs ) into their products to simplify protection , enhance defender capabilities and fight back against hackers .
CISOs double down on Active Directory protection
As traditional perimeter defenses fall short , organizations are taking an identity-first approach to security . AD is used in over 90 % of enterprises to centralize the identities of an organization ’ s users , passwords , and devices .
However , it ' s also involved in 9 out of 10 cyberattacks , and Microsoft estimates threat actors attack 95 million AD accounts a day ( on the conservative side ).
While the algorithms are easy to generate , the solution is only as good as the data it ' s trained on .
Expect to see stories of major breaches from businesses that trust AI tools to protect their data and sensitive systems . The coming year will separate the AI / LLM winners from the rest of the pack , and smart IT and security teams will proceed with caution .
The proliferation of attacks along with the ability to escalate privileges and move around the network once abused , means CISOs should double down AD protection to ensure that the most critical avenues into their business are tightened up .
Dual ransomware attacks pick of steam in 2024
With the sophistication of attacks and pace of vulnerabilities on the rise , it ’ s no secret that 2024 will have its fair share of headline-grabbing breaches .
Seventy per cent of organizations experienced a ransomware attack last year and there is no end in sight heading into 2024 .
Interestingly , organizations that admitted paying ransoms were often hit a second time within one month of the first attack . And the ransom demands are usually higher .
The FBI is now warning companies to be on the lookout for dual ransomware attacks , where the criminals attack with two different variants of ransomware either at the same time or in close proximity .
Ransomware attacks can have catastrophic consequences on businesses , resulting in millions of dollars of losses and C-level resignations .
The FBI recommends that organizations maintain backup data files and maintain a recovery plan . Organizations need to also know what their critical systems are ( including infrastructure such as Active Directory ) before attacks occur and build resiliency into them .
With the sophistication of attacks and pace of vulnerabilities on the rise , it ' s no secret that 2024 will have its fair share of headline-grabbing breaches .
For IT and security teams planning to address these challenges , it will be imperative to start conversations with the board early , gain better visibility into their environments , align on the most essential cyber tools , get control of their user identities and develop clear response and recovery plans in the event of an attack . p
84 INTELLIGENTCIO NORTH AMERICA www . intelligentcio . com