While the potential impact of AI shouldn’t be underestimated, we should also remember that most of today’s threats and exploits are focused on basic gaps in cyber hygiene.
At the end of 2022, the world was wrapping up a year that saw — among other major events — the unofficial end of the Covid-19 pandemic, the start of the war in Ukraine, and the passing of Queen Elizabeth II.
Around the same time, one somewhat cryptic term began appearing in Google searches: ChatGPT. Very quickly, searches for this term ballooned and reached a peak in April 2023, dragging along with it searches for AI, as the below chart from Google Trends illustrates:
As we collectively digested the buzz around generative AI or large language models (LLM), cybersecurity experts scrambled to predict the implications of this new powerful application, both in terms of strengthening cyber defenses for individuals and businesses as well as the risks associated with new threats and powerful tools that would be in the hands of bad actors.
Some of the anticipated positive consequences of the rise of generative AI in the cybersecurity space include:
On the other hand, LLMs can also be used by bad actors. For example, they can reduce the monotonous, time-consuming elements of hacking, such as gathering data about a target. AI could also be used to create malicious code or phishing scams at scale; it can exploit more vulnerabilities by making it harder to trust identities, data, and correspondence.
The reality of common AI-related threats to SMBs
While the potential impact of AI shouldn’t be underestimated, we should also remember that most of today’s threats and exploits are focused on basic gaps in cyber hygiene. Small and medium businesses often lack the expertise or the investment appetite to implement basic protective measures like antivirus or endpoint security, password management, and backing up their data. Viruses, phishing, and ransomware still top the list of most common attacks targeted at SMBs, and hackers can easily deploy such attacks today without the help of sophisticated AI-powered technology.
Our recommendation is to prioritize the deployment of robust security measures for today’s most common threats while staying abreast of future threats and potential new security capabilities powered by AI.
Here are three easy ways for SMBs to accomplish this:
At Avast, we continue to work closely with technology partners and academia to research and develop cutting-edge cyber safety capabilities using AI and machine learning to help our SMB customers remain confident in their ability to be shielded from attacks online — today, tomorrow, and beyond.
The new Avast Cybersecurity Basics Training Quiz provides training on Data Security, Identity Management, and Social Media Security
How SMBs can effectively protect their networks from cyberthreats – without breaking their security budgets