The Canadian AI Arms Race: How to Battle Cybercrime in a New Era

Recent advances in AI are providing new tools and capabilities to both cybersecurity defenders and malicious actors. On one side, cybercriminals are leveraging increasingly sophisticated AI-powered tools to launch more targeted and disruptive attacks. On the other hand, defenders are scrambling to fortify their digital defences with their own arsenals of AI-driven solutions. This escalating arms race isn’t just reshaping the Canadian cybersecurity landscape – it’s a wake-up call for businesses and individuals alike. This could not come at a more opportune moment, with a reported 60% of Canadian organizations recognizing the critical need to increase their cybersecurity spending.

In the coming year, we can expect to see AI and its impact become prevalent in cybersecurity, levelling up phishing lures, identifying weak spots in defences, and reducing the time taken to develop and respond to attacks. 2024 will see cybersecurity teams prioritize AI–by preparing for the new wave of AI-driven threats and using this technology to their advantage.

Looking Ahead: The AI-Powered Future of Security 

1. Social engineering will be supercharged by AI 

In 2024, cybercriminals will leverage AI to supercharge social engineering attacks on an unseen scale, generating convincing phishing lures at an unprecedented pace. These lures, generated within seconds, will be meticulously tailored using data sourced from social media or compromised mailboxes, rendering them difficult for employees to identify – even after phishing training. By mimicking colloquial language or regional dialects in communication, attackers can create a false sense of familiarity and legitimacy, making it more likely for employees to lower their guard and unwittingly disclose confidential information.

With forged emails resembling legitimate ones, businesses cannot rely on employee education alone. To protect against AI-powered social engineering attacks, organizations must create a virtual safety net for their users. Micro-virtualization creates disposable virtual machines that are isolated from the PC operating system, ensuring user protection even if they inadvertently engage with malicious content. This isolation extends to advanced threats like AI-powered social engineering attacks. Solutions like HP Wolf Security’s isolation technology can further enhance this protection by containing risky activities within micro-VMs and wrapping a secure layer around applications containing sensitive data.

2. LLMs will bring new opportunities and new challenges

Local Large Language Models (LLM) are set to be built into PCs this year, with “AI PCs” revolutionizing how people interact with their endpoint devices. These LLMs will enhance efficiency and productivity while offering security and privacy benefits through independent AI utilization. These personalized assistants and chatbots minimize security risks associated with cloud-based data storage. However, increased data collection by local models makes endpoints lucrative targets for threat actors. 

As organizations adopt LLM chatbots for convenience, security teams face additional defence responsibilities, as these chatbots may serve as gateways to previously inaccessible data. Threat actors could exploit targeted prompts to socially engineer corporate LLMs, bypassing controls and accessing confidential information.

3. AI will lower the barrier to entry for destructive firmware and hardware attacks

As cybersecurity technologies advance, attackers face increased difficulty in accessing systems and evading detection. However, the widespread availability of AI empowers attackers with sophisticated capabilities, enabling innovation and heightened attacks on firmware and hardware layers where security teams have limited visibility. Historically, accessing below the operating system (OS) required extensive technical knowledge, but AI facilitates easier targeting of lower technology stack levels.

We can expect to see a rise in the number of advanced cyber-attacks that are harder to detect and more damaging. Incidents like the 2019 Desjardins Group data breach, one of the largest in Canadian history, underscore the growing threat landscape. Such attacks highlight the pressing need for proactive measures and robust defences, such as investment in hardware and firmware security, to mitigate risks and safeguard critical assets against emerging cyber threats.

A New Era for Cybersecurity

While AI fuels sophisticated cyberattacks, it’s also a double-edged sword. Security teams can leverage AI to boost threat detection and response and lighten their workload, creating a more balanced fight against evolving cyber threats.

The arrival of AI PCs in 2024 will bring huge security and privacy advantages, enabling users to leverage AI more securely on devices without the security risk of having data sent and held in the cloud. They will also bring a new layer of data privacy, such as automatically locking an unmanned device or initiating a privacy screen when a device is being watched.

The Canadian AI Arms Race is not a sprint but a marathon. By understanding the evolving threat landscape, embracing responsible AI development, and fostering collaboration, we can ensure that Canada emerges as a leader in secure and resilient digital spaces. This is not just about data protection; it’s about safeguarding our shared tomorrow. Partnering with trusted AI security vendors that are committed to creating safe, secure and trustworthy AI will ensure customers maximize the benefits of AI, while being protected from the new security and privacy threats.