Security teams turn to AI to fight hackers

Cisco: CISOs rely on machine learning and automation to combat increasing threat volumes

AI machine learning brain chip

Security teams are increasingly reliant on machine learning and AI tools to cope with the sheer volume of security threats they face, according to new figures.

More than 70% of 3,600 organisations across 26 countries said they were mostly or entirely reliant on AI, automation and machine learning in order to help cope with the amount of threats faced by businesses, according to Cisco's 2018 Security Capabilities Benchmark Study, released today.

The high volumes of intrusion attempts made on many organisations - in the UK, for example, councils face an average of 27 attacks per minute - often result in huge volumes of event logs, which can be impossible to sift through by hand. This task is made even more difficult by malware that uses encrypted traffic - in which Cisco researchers saw a 300% increase over 12 months.

Instead, many businesses are turning to AI tools, the network vendor claimed, because these can automatically learn what is and is not a normal event, and flag high priority items to security staff.

Similarly, behavioural analytics tools can automatically detect what a given user's normal behaviour is and can identify when an account is acting suspiciously, which may indicate a compromised account or a malicious insider. A total 92% of security professionals said these tools work either very or extremely well.

In order to try and cope with the growing breadth and scale of attack attempts, organisations are deploying an increasing number of tools.

A quarter of respondents to the study reported using security products from between 11 and 20 vendors, an increase of 7% from the previous year. The number of organisations using between 21 and 50 vendors more than doubled, and 5% reported using more than 50 vendors' products.

"Last year's evolution of malware shows adversaries are becoming wiser at exploiting undefended gaps in security," said John N. Stewart, senior vice president and chief security and trust officer at Cisco. "Like never before, defenders need to make strategic security improvements, technology investments, and incorporate best practices to reduce exposure to emerging risks."

Featured Resources

Shining light on new 'cool' cloud technologies and their drawbacks

IONOS Cloud Up! Summit, Cloud Technology Session with Russell Barley

Watch now

Build mobile and web apps faster

Three proven tips to accelerate modern app development

Free download

Reduce the carbon footprint of IT operations up to 88%

A carbon reduction opportunity

Free Download

Comparing serverless and server-based technologies

Determining the total cost of ownership

Free download

Recommended

Senate report slams agencies for poor cyber security
cyber security

Senate report slams agencies for poor cyber security

3 Aug 2021
Most employees put their workplace at risk by taking cyber security shortcuts
cyber security

Most employees put their workplace at risk by taking cyber security shortcuts

27 Jul 2021
61% of organizations say improving security a top priority for 2021
cyber security

61% of organizations say improving security a top priority for 2021

29 Jun 2021
ProtectedBy.AI’s CodeLock blocks malware at source code level
software as a service (SaaS)

ProtectedBy.AI’s CodeLock blocks malware at source code level

9 Jun 2021

Most Popular

How to move Microsoft's Windows 11 from a hard drive to an SSD
Microsoft Windows

How to move Microsoft's Windows 11 from a hard drive to an SSD

24 Nov 2021
What should you really be asking about your remote access software?
Sponsored

What should you really be asking about your remote access software?

17 Nov 2021
Nike to take customers into the metaverse with 'NIKELAND'
virtualisation

Nike to take customers into the metaverse with 'NIKELAND'

19 Nov 2021