At Black Hat USA in Las Vegas on Wednesday, August 7, Microsoft’s Ann Johnson, corporate vice president and deputy chief information security officer (CISO), and Sherrod DeGrippo, the director of threat intelligence strategy, were the main speakers for their presentation titled “From the Office of the CISO: Smarter, Faster, Stronger, Security in the Age of AI.” The audience anticipated a discussion on how AI could enhance cybersecurity tools, but Johnson and DeGrippo had a different plan in mind.
During their talk, DeGrippo humorously brought up the recent global CrowdStrike outage, causing some laughter from the audience. The faulty sensory configuration update to CrowdStrike’s Falcon platform on July 19 led to major outages for millions of Microsoft users and numerous blue screens of death. The aftermath of the incident resulted in an estimated monetary loss of around $5.4 billion, excluding Microsoft’s own losses.
Johnson shared her firsthand experience of the outage effects, narrating how the incident unfolded and how the Microsoft team rallied to address the problem. Despite the challenges, she praised the resilience and dedication of both Microsoft employees and the broader industry, emphasizing the power of collective action during such crises.
DeGrippo highlighted the role of the Microsoft Threat Intelligence Center (MSTIC) in collaborating with customers and various partners, including independent researchers, vendors, and even healthcare organizations, to address cybersecurity threats. One notable group they have been monitoring is Scattered Spider, known for orchestrating ransomware attacks, with Microsoft actively supporting law enforcement efforts to counter such threats.
Johnson commended the cybersecurity community for their efforts in preventing countless potential attacks, urging attendees to acknowledge the positive impact of their work in thwarting cyber threats. She stressed the importance of collaboration among industry peers and public sectors to enhance defense strategies and mitigate risks effectively.
Looking ahead, Johnson emphasized the significance of leveraging evolving technologies like artificial intelligence (AI) to empower defenders in combating sophisticated threats posed by threat actors utilizing AI tools. She underscored the need for implementing innovative strategies and tools to prevent burnout among cybersecurity professionals, ensuring a healthy work-life balance amidst evolving cyber challenges.
In conclusion, Johnson emphasized the human element in cybersecurity, highlighting the crucial role of community, collaboration, and shared responsibility in safeguarding digital infrastructure against advanced cyber threats. As technology continues to evolve, the collective efforts of cybersecurity professionals remain paramount in safeguarding digital assets and mitigating cybersecurity risks effectively.