The RSA Convention, held in San Francisco from Could 6-9, brings collectively cybersecurity professionals from internationally. This 12 months’s convention is buzzing with dialog about generative AI: learn how to use generative AI to guard in opposition to assaults and learn how to safe generative AI itself.
We’re rounding up the enterprise enterprise tech information from RSA that’s most related for IT and tech decision-makers. This text might be up to date all through RSA with extra tech information highlights.
Google updates Google Safety Operations and extra with Gemini AI
Google is combining the safety capabilities of data safety firm Mandiant and malware scanner VirusTotal with Gemini AI and Google’s personal person and machine footprint in a brand new providing known as Google Menace Intelligence. Obtainable Could 6 wherever Google Cloud Safety is distributed, Google Menace Intelligence makes use of Gemini AI to get a top-down take a look at safety information, competing with Microsoft’s Copilot for Safety.
As well as, Google introduced:
- New curated detections for Google Safety Operations which are designed to scale back handbook processes and counsel outcomes related to the broader Google Cloud and up to date to incorporate recently-detected threats.
- AI consulting providers from Mandiant, which might crimson staff each a company’s AI defenses and the way a company’s safety could possibly be compromised by AI.
- New providers making the most of Gemini in Safety.
Microsoft enhances Copilot for Safety, Defender XDR, Sentinel and Purview
As a part of RSA, Microsoft introduced quite a lot of new instruments and options for Microsoft Defender XDR, the safety resolution portal. Safety researchers utilizing Defender XDR can now:
- See insider threat info.
- Use native operational expertise safety, which allows them to handle OT and industrial expertise management system vulnerabilities proper in Defender XDR.
- Reap the benefits of new instruments with AI for disrupting compromised customers, together with in instances the place attackers have compromised a person account utilizing leaked credentials, credential stuffing or guessing.
Microsoft Purview can now spot susceptible AI touchpoints
In Purview, the AI Hub is now obtainable in preview. The AI Hub reveals which delicate information is likely to be shared with AI functions together with Microsoft Copilot, highlighting attainable dangers. The AI Hub will even spotlight whether or not your AI deployments are compliant with main laws and requirements such because the EU AI Act and NIST AI Danger Administration Framework.
Sentinel SOC Optimizations counsel cost-saving measures and extra
Microsoft Sentinel will now embody SOC Optimizations, that information safety personnel via managing prices, growing the worth of knowledge and enhancing defenses.
Integrations added to Microsoft’s Copilot for Safety AI assistant
Microsoft Copilot for Safety now integrates with Purview, Azure Firewall, Azure Net Utility Firewall and choose new accomplice plugins.
IBM and AWS analysis: Generative AI’s unpredictable dangers fear the C-suite
IBM and AWS revealed a report throughout RSA on how executives are enthusiastic about securing generative AI. The report discovered that fewer than 1 / 4 (24%) of respondents mentioned they’re together with safety as a part of their generative AI initiatives — presumably an indication that hyperscalers have a distinct segment to step into because the enterprise of securing AI initiatives turns into extra mainstream.
Most respondents had been involved about generative AI’s impact on safety, with 51% saying they had been nervous about unpredictable dangers and new safety vulnerabilities arising, and 47% watching out for brand spanking new assaults focusing on AI. IBM pitched its Framework for Securing Generative AI, which was launched in January 2024, as an answer.
Danger and governance frameworks might be key to assist safe generative AI, IBM and AWS discovered within the report. As well as, IBM is extending its X-Power Crimson testing providers to AI, together with generative AI functions, MLSecOps pipelines and AI fashions.
SEE: It’s open season on Adobe’s Firefly and Content material Credentials for choose bug bounty hunters. (TechRepublic)
McAfee Deepfake Defender will flag pretend movies
As Intel is making its Core Extremely PCs prepared for onboard AI, McAfee has partnered with Intel to detect misinformation and deepfakes. Utilizing the neural processing unit (often known as an AI accelerator), McAfee Deepfake Detector will flag photorealistic AI-generated movies.
Deepfake Detector was first revealed in January at CES. On Could 6 at RSA, McAfee detailed that Deepfake Detector is predicted “quickly,” beginning in English and increasing to different languages.
Proofpoint provides AI screening to e mail safety merchandise
At RSA, Proofpoint introduced two novel e mail safety providers:
- Pre-delivery semantic evaluation, the big language model-based detection of social engineering emails to cease e mail fraud or malicious hyperlinks earlier than they attain Microsoft 365 and Google Office inboxes.
- Adaptive Electronic mail Safety, an Built-in Cloud Electronic mail Safety resolution with computerized quarantining and rationalization of behavioral anomalies for high-value targets.
Each of those e mail safety providers can be found Could 6. Adaptive Electronic mail Safety is offered solely on a rolling foundation for choose prospects who have already got commonplace e mail safety packages and have recognized high-risk workers.
Cisco and Splunk develop Cisco Hypershield
On Could 6 at RSA, Cisco confirmed one of many first outcomes of its March acquisition of Splunk. Cisco added two capabilities to its Cisco Hypershield information middle and cloud safety product, which might now:
- Detect and block assaults from unknown vulnerabilities inside runtime workload environments.
- Isolate suspected workloads.
Cisco additionally introduced that Cisco Identification Intelligence AI analytics at the moment are obtainable within the Cisco Duo safety platform, including particular instruments to catch identity-based assaults.
Splunk introduced on Could 6 a brand new asset and threat intelligence resolution known as Asset and Danger Intelligence. Splunk Asset and Danger Intelligence is now in early entry.
TechRepublic is masking RSA remotely.