The RSA Convention, held in San Francisco from Could 6-9, brings collectively cybersecurity professionals from internationally. This yr’s convention is buzzing with dialog about generative AI: learn how to use generative AI to guard in opposition to assaults and learn how to safe generative AI itself.
We’re rounding up the enterprise enterprise tech information from RSA that’s most related for IT and tech decision-makers. This text might be up to date all through RSA with extra tech information highlights.
Google updates Google Safety Operations and extra with Gemini AI
Google is combining the safety capabilities of knowledge safety firm Mandiant and malware scanner VirusTotal with Gemini AI and Google’s personal consumer and gadget footprint in a brand new providing known as Google Risk Intelligence. Accessible Could 6 wherever Google Cloud Security is distributed, Google Risk Intelligence makes use of Gemini AI to get a top-down take a look at safety information, competing with Microsoft’s Copilot for Security.
As well as, Google introduced:
- New curated detections for Google Safety Operations which might be designed to cut back guide processes and recommend outcomes related to the broader Google Cloud and up to date to incorporate recently-detected threats.
- AI consulting providers from Mandiant, which may crimson group each a company’s AI defenses and the way a company’s safety might be compromised by AI.
- New providers benefiting from Gemini in Security.
Microsoft enhances Copilot for Safety, Defender XDR, Sentinel and Purview
As a part of RSA, Microsoft introduced a wide range of new tools and features for Microsoft Defender XDR, the safety resolution portal. Safety researchers utilizing Defender XDR can now:
- See insider threat data.
- Use native operational know-how safety, which allows them to handle OT and industrial know-how management system vulnerabilities proper in Defender XDR.
- Benefit from new instruments with AI for disrupting compromised customers, together with in instances the place attackers have compromised a person account utilizing leaked credentials, credential stuffing or guessing.
Microsoft Purview can now spot weak AI touchpoints
In Purview, the AI Hub is now out there in preview. The AI Hub reveals which delicate information could be shared with AI functions together with Microsoft Copilot, highlighting potential dangers. The AI Hub will even spotlight whether or not your AI deployments are compliant with main laws and requirements such because the EU AI Act and NIST AI Threat Administration Framework.
Sentinel SOC Optimizations recommend cost-saving measures and extra
Microsoft Sentinel will now embrace SOC Optimizations, that information safety personnel by managing prices, growing the worth of knowledge and enhancing defenses.
Integrations added to Microsoft’s Copilot for Safety AI assistant
Microsoft Copilot for Safety now integrates with Purview, Azure Firewall, Azure Internet Utility Firewall and choose new accomplice plugins.
IBM and AWS analysis: Generative AI’s unpredictable dangers fear the C-suite
IBM and AWS printed a report throughout RSA on how executives are thinking about securing generative AI. The report discovered that fewer than 1 / 4 (24%) of respondents stated they’re together with safety as a part of their generative AI initiatives — presumably an indication that hyperscalers have a distinct segment to step into because the enterprise of securing AI initiatives turns into extra mainstream.
Most respondents had been involved about generative AI’s impact on safety, with 51% saying they had been apprehensive about unpredictable dangers and new safety vulnerabilities arising, and 47% watching out for brand spanking new assaults focusing on AI. IBM pitched its Framework for Securing Generative AI, which was launched in January 2024, as an answer.
Threat and governance frameworks might be key to assist safe generative AI, IBM and AWS discovered within the report. As well as, IBM is extending its X-Drive Pink testing providers to AI, together with generative AI functions, MLSecOps pipelines and AI fashions.
SEE: It’s open season on Adobe’s Firefly and Content Credentials for choose bug bounty hunters. (TechRepublic)
McAfee Deepfake Defender will flag faux movies
As Intel is making its Core Extremely PCs prepared for onboard AI, McAfee has partnered with Intel to detect misinformation and deepfakes. Utilizing the neural processing unit (often known as an AI accelerator), McAfee Deepfake Detector will flag photorealistic AI-generated movies.
Deepfake Detector was first revealed in January at CES. On May 6 at RSA, McAfee detailed that Deepfake Detector is anticipated “quickly,” beginning in English and increasing to different languages.
Proofpoint provides AI screening to electronic mail safety merchandise
At RSA, Proofpoint introduced two novel email security services:
- Pre-delivery semantic evaluation, the big language model-based detection of social engineering emails to cease electronic mail fraud or malicious hyperlinks earlier than they attain Microsoft 365 and Google Office inboxes.
- Adaptive Electronic mail Safety, an Built-in Cloud Electronic mail Safety resolution with computerized quarantining and rationalization of behavioral anomalies for high-value targets.
Each of those electronic mail safety providers can be found Could 6. Adaptive Electronic mail Safety is accessible solely on a rolling foundation for choose prospects who have already got customary electronic mail safety packages and have recognized high-risk staff.
Cisco and Splunk increase Cisco Hypershield
On Could 6 at RSA, Cisco confirmed one of many first outcomes of its March acquisition of Splunk. Cisco added two capabilities to its Cisco Hypershield information heart and cloud safety product, which may now:
- Detect and block assaults from unknown vulnerabilities inside runtime workload environments.
- Isolate suspected workloads.
Cisco additionally introduced that Cisco Id Intelligence AI analytics are actually out there within the Cisco Duo safety platform, including particular instruments to catch identity-based assaults.
Splunk introduced on Could 6 a brand new asset and threat intelligence resolution known as Asset and Risk Intelligence. Splunk Asset and Threat Intelligence is now in early entry.
TechRepublic is masking RSA remotely.
