The cybersecurity landscape in the Asia Pacific (APAC) is set for significant change in 2024, including the growing involvement of artificial intelligence (AI), driven by companies like LogRhythm. The forthcoming trends present both opportunities and challenges; frameworks of attack and defence evolve juxtaposing human expertise and advanced technologies.
According to Andrew Hollister, CISO & VP Labs R&D at LogRhythm, generative AI will primarily augment, not replace, Security Operations Centers (SOCs) analysts. He explains that "the Asia Pacific region, which faces a critical shortage of 2.7 million cybersecurity workers, Gen AI will enhance the capabilities of short-staffed SOC teams". However, the adoption of generative AI isn't without pitfalls; there is a notable risk of confidential data breaches. "Many are uncertain about how to effectively leverage gen AI...it is likely to result in a significant risk of confidential information breaches through gen AI platforms" Hollister adds.
Kevin Kirkwood, Deputy CISO at LogRhythm warns of a significant issue: complacency towards organisations' cybersecurity. He notes that a trend persists of "organizations repeatedly investing in security measures under the assumption that their security posture is fortified". However, cyber hackers also understand this and can take advantage if organisations become complacent in their investments. "Security is an ever-evolving landscape...if a security program is not continually adapting...it remains vulnerable to emerging threats", says Kirkwood.
Sally Vincent, Senior Threat Research Engineer, forecasts a surge in AI-enhanced botnets set to present unparalleled cybersecurity challenges. She raises the alarm on the increasing synergy between AI and botnets, positing that "AI-powered botnets will exploit advanced algorithms to expand their reach and impact, necessitating innovative defence strategies and heightened vigilance."
Joanne Wong, Vice President, International Markets, underlines the deficiency of skilled AI professionals as a primary obstacle to broader AI adoption. Despite AI's potential to add US$1 trillion to the ASEAN's GDP, a significant gap exists due to the lack of trained individuals. Wong points out despite the promise of AI's advantages "human expertise continues to play a pivotal role in bridging the gap between the capabilities of an AI solution and the distinct requirements of an organisation".
Wong further elaborates about the cybersecurity concerns that digitally native mega projects in Singapore and Southeast Asia, such as Changi Airport Terminal 5, Tuas Port, and Indonesia's Nusantara capital project, might bring. "They introduce numerous vulnerabilities that malicious actors could exploit," Wong notes.
The healthcare industry, according to LogRhythm predictions, will likely be at the receiving end of the bulk of AI-powered attacks. "With Singapore’s public healthcare institutions recently hit with DDoS attacks...ensuring the security and continued operations of healthcare institutions will be top of mind for many" state the company predictions. These attacks could jeopardise the confidentiality and reliability of vital health information, resulting in a notable rise in breaches.