Connect with us

Hi, what are you looking for?

Captain Of Success
Top Stories

Stock Markets

Growing AI adoption may expose PHL companies to more cyberattacks

WANGXINA-FREEPIK

PHILIPPINE BUSINESSES may face more cyberattacks as they continue to adopt artificial intelligence (AI)-powered solutions, with threat actors also using more advanced tools to exploit these technologies, cybersecurity company Trend Micro said.

Trend Micro Philippines Country Manager Ian Felipe said at a briefing on Monday that Philippine enterprises have improved their overall cyber hygiene, boosting investments to address cybersecurity risks and improving their teams’ skill sets.

However, firms must be aware of the risks that come with using AI-driven technologies, he said.

“It’s very important to have visibility in terms of what might and what can happen in the future when you adopt AI,” Mr. Felipe said.

Trend Micro said cyberattacks are now targeting AI agents, with criminals hijacking or misguiding these agents to exploit firms’ systems.

“When you use agentive AI, it’s basically an autonomous AI that can decide on its own, so having this kind of setup provides less visibility in terms of the actions or interactions of this AI to our systems,” Raymond Almanon, senior threat researcher at Trend Micro, said at the same briefing.

Agentive AI deploys a self-governing “agent” that can make decisions without minimal human supervision. It is expected to help automate tasks, reduce costs, and improve productivity.

According to Trend Micro, attackers are also using AI to launch faster and undetectable attacks with less tools.

“Adding to this is the unauthorized or malicious activities carried out by misguided autonomous agents, so we really need to make sure that every time we deploy an agent, there is a way for us to monitor it,” Mr. Almanon said.

He said businesses should have measures to monitor their AI agent operators to spot potential vulnerabilities.

“We have to implement robust security measures that give end-to-end visibility on agent operations and harness AI to ensure protection from vulnerabilities it creates for itself.”

With more companies using AI technologies, hackers are also likely to target AI-driven training environments, access infrastructure, and service subscriptions to steal information, Mr. Almanon added.

Many cyberattacks focus on obtaining companies’ login credentials to help them orchestrate large-scale exploits, he said. “Once info stealers get access to one of your employees’ credentials, that can be the start of a bigger attack on your network.”

AI can also be exploited to craft phishing e-mails, conduct disinformation campaigns and scams like pig butchering or investment fraud, expand the scale of cyberattacks, and target device drivers, he said.

“If you have a vulnerable driver that is installed — meaning these are pre-installed on your machine or came from another software — they can be targeted and used to execute malicious codes without you knowing,” Mr. Almanon said. — Beatriz Marie D. Cruz

    You May Also Like

    Stock Markets

    GILAS PILIPINAS will sport new gear and kits this year after an end to its long-time partnership with renowned sports brand Nike. In an...

    Stock Markets

    A worker uses a microscope at an electronics manufacturing assembly plant in Biñan, Laguna, April 20, 2016. — REUTERS EXPORTS to the US are...

    Stock Markets

    PHILIPPINE STAR/EDD GUMBAN THE PHILIPPINES saw a slight improvement in its ranking in a global corruption perceptions index by Transparency International, although its score...

    Stock Markets

    PHILSTAR FILE PHOTO THE PHILIPPINES had some of the most restrictive regulations for trade in services in 2024, particularly in terms of barriers to...

    Disclaimer: CaptainOfSuccess.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice.
    The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.