Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Generative AI in Cybersecurity: Rise of the Machines?

David J. Bianco
May 31, 2023
Technology
0
20

Generative AI in Cybersecurity: Rise of the Machines?

In recent years, generative artificial intelligence (AI), especially Large Language Models (LLMs) like ChatGPT, has revolutionized the fields of AI and natural language processing. From automating customer support to creating realistic chatbots, we rely on AI much more than many of us probably realize. The AI hype train definitely reached full steam in the last several months, especially for cybersecurity use cases, with the release of tools such as Stable Diffusion, Midjourney, DALL-E, ChatGPT / GPT-3.5 / GPT-4. Unfortunately, almost all of this attention focuses on the potential negative impacts of AI, while ignoring beneficial use cases to help organizations defend their networks. As we know, disasters almost always make for better primetime news viewing than cute puppies, and most of these articles have big “if it bleeds, it leads” energy. But is all this negative hype warranted? Let's examine a few concrete use cases and find out!

[As presented during the SANS AI in Cybersecurity Summit 2023]

David J. Bianco

May 31, 2023
Tweet

More Decks by David J. Bianco

See All by David J. Bianco
Trust Unearned? Evaluating CA Trustworthiness Across 5 Billion Certificates
davidjbianco
0
150
Five Lies & a Truth: Attacking the Defender's Dilemma
davidjbianco
0
37
Five Lies and a Truth: Attacking the Defender's Dilemma
davidjbianco
0
230
Developers: What Your Security Team Wishes You Knew (And It's Not Secure Coding!)
davidjbianco
0
120
Raising the Tide: Driving Improvement in Security by Being a Good Human
davidjbianco
0
38
Evolving the Hunt: A Case Study in Improving a Mature Hunt Program
davidjbianco
0
940
Quality Over Quantity: Determining Your CTI Detection Efficacy
davidjbianco
1
370
Quality over Quantity: Determining Your CTI Detection Efficacy
davidjbianco
0
260
Introduction to Data Analysis with Security Onion (and Other Open Source Tools)
davidjbianco
0
1.2k

Other Decks in Technology

See All in Technology
Data and AI Governance: Existing Challenges and Emerging Trends
scotthsieh825
0
120
「手動オペレーションに定評がある」と言われた私が心がけていること / phpcon_odawara2024
blue_goheimochi
1
180
Head toward Java 22 and Java 23
lycorptech_jp
PRO
1
140
次世代Web認証「パスキー」 / mo-zatsudan-passkey
nkzn
22
13k
OpenTelemetry を使ったトレースエグザンプラーの活用 / otel-trace-exemplar
k6s4i53rx
2
550
Four keys改善の取り組み事例紹介
sansantech
PRO
2
210
SREとその組織類型
tatsuo48
8
1.3k
NLP2024 参加報告LT ~RAGの生成評価と懇親戦略~ / nlp2024_attendee_presentation_LT_masuda
taro_masuda
1
190
AIQ株式会社 エンジニア向け会社紹介資料
aiqlab
0
260
「共通基盤」を超えよ! 今、Platform Engineeringに取り組むべき理由
jacopen
24
5.2k
アプリがつくるNOT A HOTELブランド
hokuts
0
440
Hands-on / Kaname Frusawa / Cloud Compare Users Meetup 2024 at University of Tokyo on April 17
paraworld
2
300

Featured

See All Featured
Adopting Sorbet at Scale
ufuk
67
8.6k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
19
1.9k
The Illustrated Children's Guide to Kubernetes
chrisshort
28
46k
Typedesign – Prime Four
hannesfritz
36
2k
Design by the Numbers
sachag
274
18k
Making Projects Easy
brettharned
106
5.5k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
34
8.8k
Building a Modern Day 
E-commerce SEO Strategy
aleyda
16
6.3k
Fashionably flexible responsive web design (full day workshop)
malarkey
397
65k
How to Ace a Technical Interview
jacobian
272
22k
It's Worth the Effort
3n
180
27k
Become a Pro
speakerdeck
PRO
9
4.5k

Transcript

  1. © 2 0 2 3 S P L U N

    K I N C . Generative AI in Cybersecurity Rise of the Machines? David J. Bianco Staff Security Strategist SURGe by Splunk @DavidJBianco @[email protected]

  2. © 2 0 2 3 S P L U N

    K I N C . > David Bianco | Staff Security Strategist, SURGe q 20+ years of experience in incident detection & response, threat hunting, CTI, and other Blue-team topics q SANS Certified Instructor q Creator of the Pyramid of Pain & Hunting Maturity Model q Terrible at introducing myself

  3. © 2 0 2 3 S P L U N

    K I N C . The AI (Hype?) Train ALLL ABOAAARD! Source: Midjourney

  4. © 2 0 2 3 S P L U N

    K I N C . According to the media, we’re doomed! If we bleed, it leads Source: Harvard Business Review Source: ZD Net Source: CSO/IDG

  5. © 2 0 2 3 S P L U N

    K I N C . New tech always freaks people out But then we adapt and figure out how it benefits us as well Source: Public Domain Source: Public Domain

  6. © 2 0 2 3 S P L U N

    K I N C . Fear: AI will take our jobs Humans will always be integral to the process Source: Infosecurity Magazine Source: NSA :Source Public Domain

  7. © 2 0 2 3 S P L U N

    K I N C . Fear: AI will write undetectable malware Maybe, but ”no code” has been around for a while Source: Forcepoint Source: VirusTotal Source: Forcepoint

  8. © 2 0 2 3 S P L U N

    K I N C . Fear: AI will create perfect phish Phishing is already pretty sophisticated Source: CNet

  9. © 2 0 2 3 S P L U N

    K I N C . Fear: AI will create perfect phish Phishing is already pretty sophisticated Source: itgovernance.eu

  10. © 2 0 2 3 S P L U N

    K I N C . Fear: AI will create perfect phish Phishing is already pretty sophisticated Source: Wired

  11. © 2 0 2 3 S P L U N

    K I N C . Why the freak-out? Genevieve Bell may have the answer Time • AI is available 24/7/365, with no need to rest Space (??) • Virtual spaces • Increased malicious traffic People • Is this intelligence Artificial or Natural? New tech creates “moral panic” when it affects our relationships with:

  12. © 2 0 2 3 S P L U N

    K I N C . AI is augmentation, not annihilation Maybe it can help bridge the “skills gap” Source: David J. Bianco & ChatGPT

  13. © 2 0 2 3 S P L U N

    K I N C . Conclusion AI could be a great opportunity for us, if we are careful Source: Arild Vågen Source: Midjourney Source: Midjourney

  14. © 2 0 2 3 S P L U N

    K I N C . Generative AI in Cybersecurity Rise of the Machines? David J. Bianco Staff Security Strategist SURGe by Splunk @DavidJBianco @[email protected]