data using various sources such as publicly available web references, social media channels and the deep dark web using a wide range of honey-pot techniques.
and Artificial Intelligence 2. Why Artificial Intelligence in Cyber Threat Intelligence? 3. Concerns of Artificial Intelligence in Cyber Threat Intelligence 4. Use cases of Artificial Intelligence in Cyber Threat Intelligence 5. Evolution of OSINT Investigations 6. Practical examples of using Artificial Intelligence for Cyber Threat Intelligence Investigations
and actionable advice, about an existing or emerging menace or hazard to assets that can be used to inform decisions regarding the subject's response to that menace or hazard. - Gartner 2013 INTRODUCTION Image from sociallinks.io
data ❖ Minimizing human error and bias ❖ AI models can automate many of the repetitive and time-consuming tasks involved in cyber threat intelligence, potentially lowering costs for organizations ❖ Artificial intelligence models can be scaled up or down as needed, allowing organizations to quickly adapt to changing threat landscapes and analyze large volumes of data without adding additional resources WHY ARTIFICIAL INTELLIGENCE IN CTI
on AI models for cyber threat intelligence, leading to a false sense of security. AI models can be powerful tools, but they should be used in conjunction with human expertise and oversight for conducting advanced threat investigations ❖ Adversarial attacks refer to attempts to manipulate or trick AI models into producing incorrect or misleading results. This is particularly relevant when it comes to cyber defense, where attackers may attempt to deceive AI models in order to evade detection ❖ AI models rely on large volumes of high-quality data to function effectively but sometimes there may be limited data available due to the sensitive nature of the information or the difficulty in collecting and analyzing it ❖ AI models may inadvertently learn and propagate biases present in their training data or algorithms, potentially leading to skewed or misleading threat analyses. ❖ Deep Fakes SOME CONCERNS