According to a new report by the United Kingdom's National Cyber Security Centre (NCSC), artificial intelligence (AI) is set to significantly increase cyber threats, particularly ransomware attacks, over the next two years. The report outlines several key points regarding the impact of AI on cyber threats:
Enhanced Threat Actors' Capabilities: AI will mainly enhance threat actors' abilities in social engineering, making it easier to carry out more persuasive phishing attacks. Generative AI can already create convincing interactions, like documents that trick individuals, free of translation and grammatical errors common in phishing.
Increased Volume, Complexity, and Impact: The report predicts that there will be increases in the volume, complexity, and impact of cyber operations as threat actors harness AI effectively.
Accessibility of AI-Enabled Cyber Tools: The report states that capable groups will monetize AI-enabled cyber tools, making improved capability available to anyone willing to pay. This is expected to increase the number of cyber criminals and boost their capabilities.
Ransomware Threat: The report suggests that ransomware is expected to continue to be a dominant form of cyber crime, with AI services lowering the barrier to entry for ransomware attackers.
The NCSC emphasizes the need to both harness AI technology for its vast potential and manage its risks. Lindy Cameron, CEO of the NCSC, highlights the importance of tackling the enhanced threat while being aware of AI's potential benefits.