AI is revolutionising cybersecurity, introducing new threats – and rapidly. New research from Keeper Security shows that while organisations are implementing AI-related policies, there is still a notable gap in overall preparedness.
Keeper’s survey highlights that 84% of IT and security leaders find AI-powered tools have made phishing and smishing attacks – already a critical threat – even more difficult to detect. In response, 81% of organisations have implemented AI usage policies for employees. Confidence in these policies is also high, with 77% of leaders stating they are either extremely or very familiar with best practices for AI security.
Despite these efforts, the gap between policy and preparedness persists. Keeper’s 2024 Top Data Threats report revealed that 51% of security leaders identify AI-powered attacks as the most serious threat facing their organisations, and 35% feel their organisations are least prepared to combat these attacks, compared to other types of cyber threats.
To effectively counter the evolving threat landscape, organisations are prioritizing a comprehensive approach that includes:
- Data Encryption: As the most widely adopted measure, encryption is crucial in protecting sensitive information from unauthorised access, especially in the face of AI-driven attacks.
- Employee Training and Awareness: Recognising the importance of human vigilance, organisations are investing in training programs to equip employees with the knowledge and skills to identify and respond to AI-powered threats like phishing and smishing.
- Advanced Threat Detection Systems: To stay ahead of sophisticated AI-driven attacks, organisations are adopting advanced threat detection solutions that provide early warnings and enable timely mitigation.
The emergence of AI-driven cyber attacks presents new challenges, but the fundamental cybersecurity practices – such as data encryption, employee training and advanced threat detection – remain essential. Organisations must ensure these foundational measures are consistently updated and adapted to meet emerging threats.
In addition to these fundamentals, adopting advanced security frameworks like zero trust and implementing Privileged Access Management (PAM) solutions can significantly improve resilience.
October is Cybersecurity Awareness Month. To celebrate, Keeper Security have been releasing weekly tips on how individuals and organisations can take action against cyber threats, including phishing.
Organisations must remain vigilant by regularly reviewing security policies, conducting audits, and promoting a culture of cybersecurity awareness. By combining traditional practices with modern approaches like zero trust and PAM, organisations can effectively defend against AI-powered threats.
