top of page

Cybersecurity Leaders Warn of Rising AI-Driven Threats Amid National Cybersecurity Awareness Month

As National Cybersecurity Awareness Month 2024 unfolds, the focus on "Protecting Our Digital Lives" takes on new urgency in light of recent high-profile cyberattacks and the rapid evolution of AI. Industry leaders from cybersecurity firms including HackerOne, Beekeeper, Lineaje, Luminys, and Aiden Technologies are emphasizing the critical need for organizations to adopt more proactive and comprehensive security measures.


AI: The New Frontier for Cybercrime

Artificial intelligence is transforming both defensive and offensive cybersecurity strategies, but it has also introduced new risks. Shobbit Gautam, Security Solutions Architect at HackerOne, highlighted the growing threat of AI misuse in the cyber world.


“Nearly half of security professionals (49%) consider AI their organization's biggest threat, emphasizing the urgent need for comprehensive industry best practices," said Gautam. He pointed to a SANS Institute report that found 58% of experts predict an AI-driven "arms race" between cybercriminals and security teams. While AI can automate and enhance security operations, it also provides bad actors with tools to launch more sophisticated attacks, from highly targeted phishing to social engineering campaigns.


AI’s role in cybersecurity is becoming a double-edged sword, as organizations grapple with risks like the leaking of AI training data, unauthorized AI usage, and the hacking of AI models. For Gautam, this creates an urgent need for companies to navigate AI's potential carefully, ensuring they mitigate its inherent risks while capitalizing on its benefits.


Expanding Attack Surfaces for Frontline Workers

Beyond AI, cybersecurity threats are increasingly targeting distributed workforces. Cris Grossmann, CEO and co-founder of Beekeeper, emphasized the heightened risks for organizations with frontline workers, who often operate outside traditional office settings.

"Distributed teams result in an increased attack surface," said Grossmann. "It’s crucial to implement robust cybersecurity measures to protect against potential threats that can take down systems and jeopardize the safety of employees in the field."


Grossmann stressed that maintaining business continuity and securing communication channels should be top priorities for companies, especially for those with widely dispersed teams. As businesses evolve to rely more heavily on remote or mobile workforces, outdated technology and unpatched systems can create significant vulnerabilities.


Supply Chain Vulnerabilities on the Rise

The risks don’t stop at individual organizations—cybercriminals are increasingly exploiting vulnerabilities in the software supply chain. Nick Mistry, CISO and SVP of Lineaje, warned that without visibility into the layers of software in their systems, organizations leave themselves exposed.


“If software is the heartbeat of today’s enterprises, then the software bill of materials (SBOM) is the heart itself,” said Mistry. He emphasized that organizations need accurate, comprehensive SBOMs to understand their software's composition—including open-source, third-party, and proprietary components. This visibility is critical for identifying and mitigating risks in the software supply chain, particularly as the complexity of these systems grows.


Mistry noted the rising importance of SBOMs as a continuous security measure, not just a one-time compliance check. With recent U.S. government initiatives pushing for SBOM transparency, he believes the cybersecurity community is shifting toward more proactive and consistent monitoring of software integrity.


Automating to Stay Ahead of Threats

Amid these growing challenges, automation is emerging as a key strategy for staying ahead of cybercriminals. Joshua Aaron, CEO of Aiden Technologies, explained how intelligent automation can help organizations combat the relentless pace of vulnerabilities and attacks.

“In today’s rapidly evolving threat landscape, staying ahead of vulnerabilities is more crucial than ever," Aaron said. "By leveraging automation in the right ways, we can dramatically improve the speed and accuracy of identifying, prioritizing, and remediating vulnerabilities across complex IT environments."


Aaron highlighted the role of automation in freeing up valuable IT resources, allowing security teams to focus on more strategic initiatives while maintaining a strong defense against evolving threats. As organizations face an ever-expanding attack surface, the ability to automate key processes—from patch management to threat detection—is becoming a competitive advantage.


Building Holistic Cybersecurity Defenses

Freddy Kuo, Chairman of Luminys, pointed out that data governance remains a critical, yet often overlooked, aspect of cybersecurity. According to IBM’s 2024 Cost of a Data Breach Report, the average cost of a breach has risen to $4.88 million, with one in three breaches involving shadow data, or ungoverned information that isn’t properly managed or secured.

“A holistic and symbiotic approach to cybersecurity is essential," said Kuo. "This means that companies must take responsibility for keeping data secure and remain dedicated to protecting the privacy of end users."


To address this, Kuo recommended organizations adopt a comprehensive strategy that includes a robust incident response plan, regular privacy and security audits, data encryption, and controlled access to sensitive information. By investing in these measures, businesses can both prevent data breaches and build trust with their customers.


Looking Forward: The Future of Cybersecurity

As this year’s National Cybersecurity Awareness Month progresses, the message from cybersecurity leaders is clear: the threat landscape is evolving rapidly, and businesses must be proactive in addressing these changes. From AI-driven cybercrime to supply chain vulnerabilities and the growing importance of automation, organizations must adopt cutting-edge strategies to protect their digital lives.


With the rise of AI and distributed workforces, security teams have a more complex challenge ahead of them than ever before. But with the right combination of technology, automation, and comprehensive risk management practices, they can stay one step ahead of the cybercriminals who are becoming more sophisticated by the day.

bottom of page