In 2024, cybersecurity practitioners should watch out for three emerging tactics threat actors are likely to take to try to sneak up on organizations:
- Attackers will increasingly turn to AI to write malware and phishing messages.
- Threat actors will deploy rogue chat programs to deliver malicious code and steal data.
- Attackers will target APIs in an effort to steal the data transmitted between applications.
Attackers Embrace AI
As many legitimate organizations begin to embrace generative AI, attackers are also experimenting with ways to use it. Shortly after ChatGPT was released in late 2022, users found ways to do all kinds of dodgy things with it. Several users demonstrated how to use ChatGPT to write new kinds of malware, including mutating code designed to evade endpoint detection and response (EDR) systems.
In the following months, ChatGPT and other popular generative AI services put filters in place to prevent users from directing them to write malware and assist with other malicious activity...Read More!
