(Editor’s note: This is the 13th installment of a monthly column on the growing number of cyberthreats facing businesses of all sizes and what they can do about it. See previous installments here.)
For more than 25 years, one of the most diverse gatherings of brilliant cybersecurity professionals, hackers, researchers and experts from across the globe has been taking place in August. These people train, engage in discussions, share experiences and brainstorm innovative solutions to the challenges faced every day. The event is called Black Hat, and it isn't just a conference. It's a catalyst for pushing the boundaries of what is possible in cybersecurity.
For executives and board members seeking to understand the latest in cybersecurity, here's a breakdown of some of the key takeaways from Black Hat USA 2023:
The central theme this year revolved around the intersection of artificial intelligence and cybersecurity. In her keynote address, Maria Markstedter, the founder of Azeria Labs, dove into the impact of generative AI on cybersecurity. As AI revolutionizes industries, businesses must navigate the unknowns of its potential while keeping control over their data.
Markstedter highlighted the importance of internal AI training and protecting against the risk of external influence that could compromise a business’s information. As AI agents gain access and authorization to more business data, protecting it from external manipulation becomes vital. For business leaders, this means a laser focus on evaluating the current state and implementing robust data protection strategies for guarding information from being corrupted by threat actors, insider threats and unintended human error.
Cybersecurity experts also highlighted the fact that we as business leaders must move beyond the “hype” around AI and focus on practical applications. Manuel Acosta from research and consulting firm Gartner Inc. stressed that fully understanding AI's capabilities and limitations is necessary. Business leaders should ask themselves how they intend to use AI, how they will secure data and how they will enable their users to use AI securely within the organization's policies and guidelines. These discussions on AI reminded us that it is not a magic wand, but a tool that requires strategic implementation and management.
Black Hat founder Jeff Moss, along with Defense Advanced Research Projects Agency, announced a groundbreaking "AI Cyber Challenge." This two-year competition challenges software developers, cybersecurity professionals, AI experts and computer scientists to design innovative AI-powered cybersecurity tools. With awards totaling millions of dollars, the challenge emphasizes the magnitude of AI in safeguarding the digital realm. The arrival of AI-powered defenses is a call to action for businesses to begin exploring advanced tools that can help predict and counter threats.
As Black Hat 2023 progressed, clear trends appeared that demand attention from business leaders. Steve Winterfeld of Akamai Technologies Inc. highlighted the increasing threat posed by previously unknown vulnerabilities and the need for better supply chain security. The trends increase the importance for businesses to adopt core security practices, such as periodic security testing, to stay ahead of attack techniques and improve the visibility of risks.
Cloud security also stayed at the forefront of discussions. Businesses must adapt to ensure near real-time detection and response to threats. With the world relying so much on applications, organizations are challenged with getting control over risks. Application and cloud security convergence is critical for assessing security risks accurately. Additionally, generative AI in cloud security is a promising yet complex area that businesses should explore thoughtfully.
Black Hat is where many cybersecurity trends make their way to the world, from AI's influence to supply chain security, the evolving role of security executives, and the convergence of communication and automation. As we navigate the sophisticated state of cybersecurity challenges and opportunities, one thing is sure: the journey towards a more secure digital landscape demands the active involvement of business leaders, cybersecurity professionals and innovators alike.
Next month: The new federal National Cyber Workforce and Education Strategy
Jason Albuquerque is the chief operating officer of Pawtucket-based Envision Technology Advisors LLC. You can reach him at www.envisionsuccess.net.
