Basil Jarrett and Patrick Linton | Don’t be alarmed by AI

We live in a world today where the online technologies and digital advancements that we enjoy have come with a heavy price. This same technology that has simplified and improved our everyday life has also created greater opportunities for cybercriminals to take advantage of vulnerable individuals and organisations, highlighting the need to improve cybersecurity measures and to keep us safe in this new digital world.

Thankfully no critical government operation has been affected by these cyber incidents, but certainly we must be concerned that our private digital domains have become increasingly vulnerable.

NO ONE IS SAFE

Jamaica has been facing an increase in incidents of cyberattacks in recent times, with critical infrastructures, corporations, public sector organisations, and the general public falling victim to the malicious activities of cybercriminals. From online credit card compromises to email accounts being held for ransom, the attacks have left no one immune. And as the country’s security agencies struggle to contain the situation, it is clear that the increasing ubiquity of digital devices and the relative inexperience of more and more online users means that there is increased urgency for action in this area.

One interesting development in the last few weeks has been the emergence of Artificial Intelligence (AI) language models such as ChatGPT, which has caused consternation in both the academic and cybersecurity worlds. Both sectors have begun to move swiftly to decide if the benefits of the technology outweigh the risks and to determine how to put this genie back in its bottle. As it stands right now, the more cautious side of the room seems to be winning, as already, some academic institutions have begun to take steps to restrict access to the platform on campus networks while others have also started to draft or update policy documents to mitigate the threat posed. While this concern is completely understandable, especially with regard to issues such as plagiarism and original work, we must avoid the temptation to see AI as an existential threat to humanity.

ARTIFICIAL INTELLIGENCE VS MACHINE LEARNING

The truth is that the use of AI and Machine Learning (ML) is one of the most promising solutions for improving cybersecurity and enhancing cybercrime investigations and cyber-incident response. AI is the theory and development of computer systems able to perform tasks that normally require human intelligence, such as visual perception, speech recognition, decision-making, and translation between languages. Machine learning, on the other hand, is a branch of artificial intelligence and computer science that focuses on the use of data and algorithms to imitate the way that humans learn, gradually improving its accuracy. These new technologies, while clearly bringing some risks along the way, also hold amazing potential to detect, analyse and prevent cybercrime in a myriad of ways.

DETECTING CYBERCRIMES

One of the most significant advantages of AI and ML in the field of cybersecurity is their ability to detect cybercrimes in real time. AI and ML can analyse and recognise vast amounts of data and patterns, improving the identification of suspicious activities and triggering the appropriate alerts. This enables cybersecurity teams to respond quickly and effectively to potential threats, thereby minimising the potential impact of an attack. For instance, AI systems may be taught to recognise and block dangerous emails and attachments from reaching users’ inboxes, while ML models may also be used to lower the risk of identity theft and financial fraud by identifying and preventing phishing websites.

ANALYSIS OF CYBERCRIMES

Another benefit of AI and ML in cybercrime investigations is their ability to provide detailed analysis of cyberattacks. These technologies can be used to gather and analyse vast amounts of data from multiple sources, including log files, network traffic, and even social media. This information can then be used to provide security teams with valuable insights into the nature of the attack, including the methods used, the origin of the attack, and the identities of the perpetrators. In addition, AI algorithms may be used to analyse log data in order to discover the time frame and techniques of an assault while ML models may also be used to analyse network traffic in order to detect the origin of an attack and the sort of data being taken.

PREVENTION OF CYBERCRIMES

Finally, the use of AI and ML in cybersecurity also offers the potential to prevent a cybercrime before it happens. By constantly monitoring systems and analysing patterns of behaviour, these technologies can identify potential threats and take action to prevent them from becoming full-blown attacks. AI algorithms can detect possible security flaws in systems and apps and warn security teams to take action. Similarly, ML models may be used to monitor network traffic in order to detect possible vulnerabilities and prevent them from being exploited.

Clearly, the application of AI and machine learning in cybercrime investigations and incident response has the potential to transform the area of cybersecurity in the face of rapidly growing and evolving threats. The technologies, with their capacity to identify, analyse, and prevent cybercrime, may be of great help to people and organisations who are exposed to online threats daily. And as the usage of digital devices and the Internet grows, organisations must therefore begin to orient their thinking around a more nuanced view of these technologies and how to apply them to their cyber safety and cybersecurity arsenal. After all, history teaches us that one of the most difficult things to do is to put a new technology back in its box, especially after that technology has shown its value. We may as well sit down and get comfortable with the future that is now here.

Major Basil Jarrett is a communications strategist and director of communications at the Major Organised Crime and Anti-Corruption Agency (MOCA). Patrick Linton is a cyber-forensics expert and MOCA’s head of cyber investigations and risk management. Email feedback to columns@gleanerjm.com