A recent report by the Information Systems Audit and Control Association (ISACA) highlights a critical situation in global cybersecurity, revealing that over half of cybersecurity teams feel underfunded as cyberattacks, particularly those driven by artificial intelligence (AI), continue to rise. The study surveyed around 6,000 organizations worldwide, with 39% reporting an increase in cyberattacks and 15% experiencing more privacy breaches than the previous year.
The report underscores significant challenges faced by cybersecurity teams in Europe, where over 60% of professionals indicate a lack of staffing and 52% feel their budgets are insufficient. The majority of these cyberattacks are ransomware incidents, which lock user data until a ransom is paid. ISACA's Global Strategy Director, Chris Dimitriadis, emphasized that the sophistication of generative AI makes such attacks increasingly difficult to detect, as it can closely mimic human communication.
Additionally, a separate investigation by Norwegian startup Strise revealed that AI tools like ChatGPT can provide information on committing financial crimes, exploiting weaknesses in anti-money laundering practices. While the AI refuses to assist with illegal requests directly, it can offer detailed advice when framed creatively. This raises alarms about the potential misuse of AI in facilitating cybercrime.
As cyber threats evolve, Microsoft and OpenAI have reported that hackers are utilizing large language models to enhance their cyberattack strategies, with attempts detected from nations including Russia, North Korea, Iran, and China. Despite efforts to mitigate these risks, both companies acknowledged the challenge of preventing all misuse.
According to the ISACA report, 71% of organizations do not provide training on digital trust, and over half of cybersecurity teams report being underfunded, making it difficult to implement effective cybersecurity measures. Dimitriadis warns that without adequate funding, organizations struggle to develop the necessary cybersecurity capabilities.
Source: fr.euronews.com, Date: 2024-10-02