The 2023 RSA Conference provided a platform for cybersecurity experts to explore the future of the industry. With emerging technologies and evolving threats, it was imperative for attendees to discuss innovative solutions. As a recipient of Cyber Defense Magazine’s 2023 Young Women in Cyber Award, I had the opportunity to attend the conference and interview C-level officers from various tech companies.
One of the most prominent topics discussed was the future of artificial intelligence (AI) in cybersecurity. Many experts expressed their optimism about AI’s potential to strengthen defense strategies. However, there were concerns about organizations adopting new technologies without fully understanding them. CISOs emphasized the need for caution and thorough testing to ensure efficacy and avoid unintended consequences.
Chuck Herrin, the CTO of Wib Security, highlighted the importance of distinguishing between tasks that require human intervention and those that can be automated. He stressed that organizations should proceed with caution when implementing AI in cybersecurity. APIs play a significant role in AI, as API traffic accounts for 91% of traffic in an organization. However, most defenders are only aware of half of their APIs, which poses a challenge in understanding and assigning risk values to these interfaces.
Wib Security has developed the Fusion Platform, a comprehensive solution for identifying, assessing, and mitigating API risks. The platform utilizes advanced scanning techniques to analyze API endpoints and detect vulnerabilities. Chuck Herrin emphasized the importance of focusing on the basics of cybersecurity and not overlooking them in favor of more advanced measures.
Another exciting technology discussed at the conference was Unknown Cyber’s automated deep static analysis of code and reverse engineering workflows. This technology identifies new viruses and malware that are often missed by traditional antivirus and sandbox solutions. Unknown Cyber’s proprietary Cythereal MAGIC leverages malware genomic correlation to uncover hidden connections and patterns among different malware samples. This approach improves the effectiveness of identifying targeted attacks involving polymorphic variants.
The mission of Unknown Cyber, “Owning the Unknown,” aligns with the company’s commitment to innovation and pushing the boundaries of cybersecurity. By identifying new viruses and malware, they aim to mitigate unforeseen risks and stay ahead of adversaries.
The conference also addressed the resurgence of ransomware attacks and the evolving landscape of ransomware. Ferhat Dikbiyik, Head of Research at Black Kite, presented a research report on the 2023 Ransomware Threat Landscape. The report revealed that ransomware attacks have doubled in 2023, with manufacturing, professional services, and educational services being the top targeted industries. The United States was the most targeted country, accounting for 43% of victim organizations.
The report also highlighted the emergence of new ransomware gangs and the rise of encryption-less ransomware. It emphasized the importance of data protection, regulatory compliance, and the risks posed by traditional encryption-based attacks.
The Ransomware Susceptibility IndexTM introduced in the report provides a measure of an organization’s vulnerability to ransomware attacks. Over 70% of analyzed victims had a high susceptibility value, indicating their vulnerability. Common indicators among victims included poor email configuration, recent credential leaks, public remote access ports, out-of-date systems, and IP addresses associated with botnet activity.
The dynamic and unpredictable nature of ransomware attacks poses a constant challenge for organizations worldwide. Ransomware groups have evolved into sophisticated entities, adopting strategies to maximize their illicit businesses. By understanding the complexities of the ransomware landscape, organizations can make informed decisions about cybersecurity strategies and reduce their vulnerabilities.
The 2023 RSA Conference provided valuable insights into the future of cybersecurity. It showcased innovative technologies and addressed evolving threats. As the industry continues to evolve, it is crucial for organizations to stay updated and adopt proactive measures to defend against cyber attacks.