DMCA.com Protection Status
Tech Republic

48% of Safety Professionals Imagine AI Is Dangerous

Posted on by Admin
48% of Safety Professionals Imagine AI Is Dangerous
09
Nov

A latest HackerOne survey make clear the rising issues AI brings to the cybersecurity panorama. The report drew insights from 500 security specialists, a neighborhood survey of two,000 members, suggestions from 50 prospects, and anonymized platform knowledge.

Their most important issues associated to AI have been:

  • Leaked coaching knowledge (35%).
  • Unauthorized utilization (33%).
  • The hacking of AI fashions by outsiders (32%)

The survey additionally discovered that 48% consider AI poses essentially the most important safety threat to their group. These fears spotlight the pressing want for corporations to reassess their AI safety methods earlier than vulnerabilities grow to be actual threats.

How the safety analysis neighborhood modified within the age of AI

The HackerOne report indicated that AI can pose a menace — and the safety neighborhood has been aiming to counter that menace. Amongst these surveyed, 10% of safety researchers focus on AI. In reality, 45% of safety leaders take into account AI amongst their organizations’ best dangers. Information integrity, specifically, was a priority.

“AI is even hacking different AI fashions,” mentioned Jasmin Landry, a safety researcher, and HackerOne pentester, also referred to as @jr0ch17, within the report.

Of these surveyed, 51% say fundamental safety practices are being ignored as corporations hurry to incorporate generative AI. Solely 38% of HackerOne prospects felt assured in defending in opposition to AI threats.

Mostly reported AI vulnerabilities embody logic errors and LLM immediate injection

As a safety platform, HackerOne has seen the variety of AI belongings included in its applications develop by 171% over the previous yr.

Probably the most generally reported vulnerabilities in AI belongings are:

  • Basic AI security (comparable to stopping AI from producing dangerous content material) (55%).
  • Enterprise logic errors (30%).
  • LLM immediate injection (11%).
  • LLM coaching knowledge poisoning (3%).
  • LLM delicate data disclosure (3%).

HackerOne emphasised the significance of the human ingredient in defending programs from AI and preserving these tools protected.

“Even essentially the most refined automation can’t match the ingenuity of human intelligence,” mentioned Chris Evans, HackerOne CISO and chief hacking officer, in a press release. “The 2024 Hacker-Powered Safety Report proves how important human experience is in addressing the distinctive challenges posed by AI and different rising applied sciences.”

SEE: For the third quarter in a row, executives are extra involved about AI-assisted attacks than another menace, Gartner reported.

Exterior AI, cross-site scripting issues happen essentially the most

Some issues haven’t modified: Cross-site scripting (XSS) and misconfigurations are the weaknesses most reported by the HackerOne neighborhood. The respondents take into account penetration assessments and bug bounties the most effective methods to establish points.

AI tends to generate false positives for safety groups

Additional analysis from a HackerOne-sponsored SANS Institute report in September revealed that 58% of safety professionals consider that safety groups and menace actors may discover themselves in an “arms race” to leverage generative AI techniques and strategies of their work.

Safety professionals within the SANS survey mentioned they’ve efficiently used AI to automate tedious duties (71%). Nonetheless, the identical individuals acknowledged that menace actors may exploit AI to make their operations extra environment friendly. Specifically, respondents “have been most involved with AI-powered phishing campaigns (79%) and automatic vulnerability exploitation (74%).”

SEE: Safety leaders are getting frustrated with AI-generated code.

“Safety groups should discover the most effective functions for AI to maintain up with adversaries whereas additionally contemplating its present limitations — or threat creating extra work for themselves,” Matt Bromiley, an analyst on the SANS Institute, mentioned in a press release.

The answer? AI implementations ought to bear an exterior overview. Over two-thirds of these surveyed (68%) selected “exterior overview” as the best strategy to establish AI security and safety points.

“Groups at the moment are extra lifelike about AI’s present limitations” than they have been final yr, mentioned HackerOne Senior Options Architect Dane Sherrets in an electronic mail to TechRepublic. “People deliver numerous vital context to each defensive and offensive safety that AI can’t replicate fairly but. Issues like hallucinations have additionally made groups hesitant to deploy the know-how in crucial programs. Nonetheless, AI remains to be nice for growing productiveness and performing duties that don’t require deep context.”

Additional findings from the SANS 2024 AI Survey, launched this month, embody:

  • 38% plan to undertake AI inside their safety technique sooner or later.
  • 38.6% of respondents mentioned they’ve confronted shortcomings when utilizing AI to detect or reply to cyber threats.
  • 40% cite authorized and moral implications as a problem to AI adoption.
  • 41.8% of corporations have confronted pushback from workers who don’t belief AI choices, which SANS speculates is “attributable to lack of transparency.”
  • 43% of organizations presently use AI inside their safety technique.
  • AI know-how inside safety operations is most frequently utilized in anomaly detection programs (56.9%), malware detection (50.5%), and automatic incident response (48.9%).
  • 58% of respondents mentioned AI programs wrestle to detect new threats or reply to outlier indicators, which SANS attributes to a scarcity of coaching knowledge.
  • Of those that reported shortcomings with utilizing AI to detect or reply to cyber threats, 71% mentioned AI generated false positives.

HackerOne’s ideas for enhancing AI safety

HackerOne recommends:

  • Recurrently testing, validation, verification, and analysis all through an AI mannequin’s life cycle — from coaching to deployment and use.
  • Researching whether or not authorities or industry-specific AI compliance necessities are related to your group and establishing an AI governance framework.

HackerOne additionally strongly really useful that organizations talk about generative AI overtly and supply coaching on related safety and moral points.

HackerOne launched some survey knowledge in September and the complete report in November. This up to date article considers each.


Source link

Drones

Industry leading drone technology at affordable prices, From Basic to Advanced at prices to suit all pockets
View Deals

NEW IN STORE

Find the best Android phone deals Balance price and technical features to offer the best suited android phones
View Deals

Headphones

Portable Audio and Visual at prices to suit all pockets with Technical Specs to suit all requirements WIFI, Cabled or Bluetooth
View Deals

Computers and Office

Access Control and Cameras

Mobile Phones

Home Improvements

Phpqexyds
Phpqewj5x
Phpc2wjcr
Php0c9kkj
Phpiwqrrg
Phpa8bwsy

Skull IT Sales

Skull IT Services

Skull IT Hosting

Newsletter

Sign up for our Newsletter

Membership

Elevate your WordPress website to new heights with Skull Sales Subscription Club, your all-inclusive solution for unlocking a world of premium WordPress plugins and themes. From just £14.99 per month, you can transform your website into a powerful and visually stunning online presence that captivates your audience and drives results.
veiw plans and options
metabox-logo-v2-200x67 (1)
Memberpress Logo
mainwp-logo-200x67
Logo Learndash
learnpress-logo-200x67
fooevents-logo-200x67
lcweb-logo-200x67
kadence-logo-200x67
Joomunited Logo
fatcatapps-logo-200x67
ithemes-logo-200x67
facetwp-logo-200x67
coderevolution-logo-200x67
codexpert-logo-200x67
cozmolabs-logo-200x67
Crocoblock Logo
geodirectory-logo-v2-200x67
diviengine-logo-200x67
givewp-logo-200x67
divi-logo-v2-200x67
gravityforms-logo-200x67
Download Monitor Logo
gravityperks-logo-v2-200x67
elementor-logo-v2-200x67
iconic-logo-200x67
eventon-logo-200x67
Codecanyon Logo
buddydev-logo-200x67
brainstorm-force-logo-v2-200x67
bookly-logo-200x67
beaverbuilder-logo-200x67
affiliatewp-logo-200x67
ampforwp-logo-v2-200x67
admincolumns-logo-200x67
wpnab-logo-200x67
themeum-logo-200x67
Pixelyoursite Logo
thrivethemes-logo-200x67
projecthuddle-logo-200x67
metabox-logo-v2-200x67
newsletter-logo-v2-200x67
Publishpress Logo
ultimate-member-logo-200x67
uncanny-owl-logo-200x67
restrict-content-pro-logo-200x67
nextend-logo-200x67
ninjaforms-logo-200x67
Shopmagic Logo
Woocommerce Logo
wpdeveloper-logo-200x67
superforms-logo-200x67
oceanwp-logo-200x67
otros-logo-v2-200x67
supportcandy-logo-200x67
Wp Grid Builder Logo
wpmanageninja-logo-200x67
Themeforest Logo
oxygen-logo-v2-200x67
Paidmembershipspro Logo
thememasters-logo-200x67
wpmu-dev-logo-200x67

All Digital items listed on the Skull Sales website are created by independent developers and are distributed by Skull Sales under the General Public License (GPL). Skull Sales is not affiliated with or endorsed by any of the developers of the products featured on this website. We support and respect the original creators of the items and encourage customers to purchase directly from them if they require premium plugin/theme support and official updates.

The information on this website is derived from publicly accessible sources or the page owners themselves. Skull Sales cannot be held responsible for the accuracy, usefulness, or reliability of the data. The brand names, logos, images, and texts belong to those third parties and their respective owners.

We Securely AcceptCopyright 2024 © Skull Sales

TRY AMAZON PRIME VIDEO FOR FREE

Try Amazon Prime Image

 

 

 

May Super-Offer Beat the A.I Revolution with us  The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER

June Super-Offer Beat the A.I Revolution with us The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER

July Super-Offer Beat the A.I Revolution with us The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER

August Super-Offer Beat the A.I Revolution with The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER

September Super-Offer Beat the A.I Revolution with The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER
Shop Now
Christmas Super-Offer Beat the A.I Revolution with The Yearly Plan - Biggest Saving EVER

October Super-Offer Beat the A.I Revolution with us - The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER

November Super-Offer Beat the A.I Revolution with us - The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER

January Super-Offer Beat the A.I Revolution with us - The Yearly Membership Plan

Biggest Saving EVER - " Unlimited Themes, Plugins and SEO Tools " 

GET OFFER