IndustriesTechnology & Biotech

Navigating the perils of AI

Exploring the cybersecurity risks — and benefits — for small and medium-sized businesses.

Sustainable journeys
Jason Busch
By Jason Busch
Prefer us on Google

Get Our Email Newsletter
The companies, people and issues shaping business in Madison and the Capital Region.

In the ever-evolving landscape of the digital age, small and medium-sized businesses (SMBs) are harnessing the power of artificial intelligence (AI) to streamline operations, enhance customer experiences, and drive growth. While AI promises remarkable benefits, it also presents a double-edged sword, posing substantial cybersecurity risks that can be especially detrimental to SMBs.

In this article, we will explore the threats that AI introduces to cybersecurity in the context of small and medium-sized businesses, drawing on the insights of local cybersecurity experts to shed light on these pressing issues.

The AI revolution in SMBs

The adoption of AI in SMBs has been nothing short of transformative. SMBs across various industries are leveraging AI for tasks ranging from data analytics and customer support to marketing and decision-making. According to a study by the International Data Corp. (IDC), by 2024, more than 50% of SMBs will have adopted AI to enhance their business processes and operations.

Advertisement

“Both periodic and constant threat detection services are valuable, but they’re not good enough to keep up with a threat actor who is able to infiltrate an environment in the time it takes a tier-1 security analyst to escalate a ticket to their superior in a security operations center,” explains Dan Schiappa, chief product officer for Arctic Wolf, a Minnesota-based cybersecurity firm that has an office in Madison. “But using machine learning to automate that process to operate at ‘the speed of data’ can help.

“In practice, this looks like pushing machine-learning-based threat detection out to the edge of an environment, whether it’s a network sensor or endpoint agent,” Schiappa adds. “When detections are done at the edge, without a need for human intervention on the customer or practitioner side, everybody wins.”

However, while this AI-driven transformation brings great promise, it also opens new vulnerabilities.

The AI-cybersecurity nexus

Advertisement

To better understand the risks that AI poses to cybersecurity for SMBs, it is essential to recognize the interplay between these two realms. AI’s strength lies in its ability to process vast amounts of data, identify patterns, and make predictions. However, this very capacity can be exploited by malicious actors to craft sophisticated cyberattacks that were previously inconceivable.

“The criminals that are out there, they’re also using AI and machine learning (ML) to advance their ability to create malware,” says Bob Turner, former chief information security officer at the University of Wisconsin–Madison. But institutions can also use AI and ML tools to fend off cyberattacks.

According to Turner, as recently as 2020, cybersecurity experts at UW–Madison were tracking roughly 70,000 events per second on the school’s network to prevent and respond to cyberattacks. That’s where AI and ML resources can assist IT security staff to not only keep an eye on what’s happening on their network but also to analyze the data coming in.

“You just need a lot of computer power to understand that,” Turner notes. “And those are great opportunities for employees to use AI and ML in our environment, making sure that the hundreds of thousands of things that go on on our network are captured on a regular basis and also that we understand them.”

Advertisement

According to the cybersecurity experts at Sprocket Security, a Madison-based IT firm, AI has broad applicability to many fields, and cybersecurity is one of the most promising. By automating cybersecurity data analysis and decision-making, AI can rapidly enhance an organization’s ability to identify and respond to them.

AI has numerous use cases and can also provide significant benefits compared to human-centric approaches. Some of the advantages of AI in cybersecurity include the following:

  • Faster threat detection and response: Artificial intelligence can analyze data and make decisions at machine speed. This enables faster threat detection and response than processes dependent on human users.
  • Improved accuracy and effectiveness: AI can process more data than a human and doesn’t get tired or bored. This can improve the accuracy and effectiveness of threat detection and response because AI can make better decisions based on more data and greater context.
  • Scalability: The capabilities of AI-based cybersecurity solutions are largely limited by their computational resources. It’s often cheaper and easier to scale by purchasing more computing power than hiring additional skilled personnel.
  • Large-scale data analysis: AI is designed to process massive amounts of data and make decisions based on this information. This capability can be invaluable for cybersecurity because it provides the ability to fight the alert overload many security teams face.

Unfortunately, AI also poses challenges for cybersecurity, such as the following:

  • The complexity of implementing AI systems: The strength of an AI model and system depends on the volume and quality of its training data. To develop an effective AI-based cybersecurity solution from scratch, an organization needs access to a large volume of training data and significant processing power to train the model and operate the final solution.
  • Potential for false positives and false negatives: Like any cybersecurity solution, AI has the potential for false positive and false negative detections. If the AI system is used as the only line of defense and automatically acts based on detected threats, it could miss attacks and inappropriately block legitimate activity.
  • Ethical concerns: An AI model and system can have intrinsic biases based on its training set. For example, facial recognition systems commonly perform best for white males and can exhibit extremely poor detection for other demographics. This introduces ethical issues for the use of AI in cybersecurity and related fields if its decisions are potentially discriminatory.

In many cases, these challenges depend on the quality and quantity of training data used, according to Sprocket Security. A system trained on better data will make more accurate decisions and hopefully carry fewer ethical concerns.

Risks from cybersecurity breaches

Cybersecurity breaches, hacks, and similar cyberattacks can have severe financial and reputational repercussions for SMBs. These risks underscore the critical importance of robust cybersecurity measures and proactive risk management. Here, we delve deeper into the financial and reputational risks that SMBs face when they become victims of cyber incidents:

  1. Financial risks:
    • Direct financial losses: The most immediate financial risk for SMBs in the aftermath of a cybersecurity breach is the direct financial loss incurred. This includes expenses related to identifying and mitigating the breach, restoring systems and data, legal fees, and potential regulatory fines and penalties. The financial burden can be especially crippling for SMBs with limited resources.
    • Operational disruption: Cyberattacks often lead to operational disruption, rendering critical business systems and functions inaccessible. This downtime can result in lost productivity, sales, and revenue. In some cases, the business may be forced to shut down temporarily, leading to substantial financial losses.
    • Legal and regulatory consequences: Many industries are subject to stringent data protection and privacy regulations. SMBs that suffer a data breach may face legal action from affected customers or regulatory bodies. Noncompliance with data protection laws can result in hefty fines and legal settlements, further straining the financial health of the business.
    • Customer compensation: SMBs that experience data breaches may be obligated to compensate affected customers for damages, such as identity theft protection services or credit monitoring. These costs can escalate rapidly, depending on the number of affected individuals.
    • Cyber insurance premiums: Following a cyber incident, SMBs may experience an increase in their cyber insurance premiums or even difficulty obtaining coverage. This adds an ongoing financial burden and underscores the importance of proactive cybersecurity measures.
  2. Reputational risks:
    • Damage to trust and reputation: Perhaps one of the most significant risks associated with cybersecurity breaches is the damage to trust and reputation. Customers, partners, and stakeholders may lose faith in the SMB’s ability to protect sensitive data. This loss of trust can result in a decline in customer loyalty, reduced sales, and an erosion of brand value.
    • Loss of competitive advantage: In today’s competitive business landscape, trust and reputation are vital assets. A cybersecurity breach can give competitors an opportunity to capitalize on the incident, attracting customers who have lost confidence in the affected SMB. This can result in a long-term loss of market share and competitive advantage.
    • Negative media coverage: High-profile cyber incidents often attract media attention. Negative headlines can amplify the reputational damage, causing further harm to the SMB’s public image. Managing public relations and addressing the media is a critical component of reputation recovery efforts.
    • Stakeholder confidence: Investors, lenders, and business partners may reconsider their relationships with SMBs that have suffered cybersecurity breaches. This can impact the ability to secure funding, form partnerships, or attract new investors, hindering business growth.
    • Customer churn: A cybersecurity breach can lead to customer churn as clients seek out more secure alternatives. The cost of acquiring new customers to replace those lost due to the breach can be significantly higher than retaining existing ones.

SMBs must prioritize cybersecurity measures, including preventive strategies and incident response plans, to mitigate these risks. Investing in cybersecurity not only safeguards against financial loss but also preserves the hard-earned reputation and trust that are invaluable assets in today’s business environment.

Doing harm

Some of the ways in which AI can be used to harm organizations include:

  1. AI-powered cyberattacks: The infusion of AI into the cyber threat landscape has given rise to AI-powered cyberattacks. These attacks leverage AI algorithms to execute tasks with remarkable speed and precision, making them particularly dangerous for SMBs. Examples include advanced phishing attacks, automated credential stuffing, and evolving malware.
  1. Data privacy concerns: As SMBs increasingly rely on AI to process and analyze customer data, concerns over data privacy become more pronounced. AI algorithms can inadvertently expose sensitive information, leading to breaches that tarnish a business’s reputation and legal ramifications. Compliance with data protection regulations like GDPR and CCPA becomes even more challenging in the AI era.
  1. Insider threats amplified: While AI can enhance employee productivity, it can also amplify the risks posed by insider threats. Rogue employees with access to AI-driven analytics tools can exploit them to access confidential information or manipulate data for malicious purposes.

Mitigating AI-related cybersecurity risks for SMBs

Addressing AI-related cybersecurity risks is paramount for the survival and growth of SMBs. Thankfully, there are plenty of ways to mitigate these threats:

  1. Invest in AI-enhanced cybersecurity solutions: SMBs should consider investing in AI-enhanced cybersecurity solutions that can adapt to evolving threats. These solutions can detect anomalies, identify potential vulnerabilities, and respond in real-time.
  1. Employee training and awareness: Prioritize employee training and awareness programs. Educating your workforce about AI-related cyber threats and best practices can significantly reduce the risk of falling victim to attacks.
  1. Regular audits and compliance: Conduct regular audits of AI systems to ensure they comply with data protection regulations. Stay informed about evolving compliance requirements to avoid legal issues.
  1. Collaborate and share threat intelligence: Collaborate with industry peers and share threat intelligence. SMBs can benefit from collective knowledge and insights to better defend against AI-powered threats.
  1. Prepare an incident response plan: In the event of a breach, having a well-defined incident response plan that includes AI-specific contingencies is crucial. It can minimize damage and downtime.

Proceed with AI caution

AI’s integration into SMB operations promises increased efficiency and competitiveness. However, the cybersecurity risks it introduces are equally formidable. Small and medium-sized businesses must approach AI adoption with caution and a proactive cybersecurity strategy.

Madison’s cybersecurity experts agree that vigilance, education, and investment in AI-enhanced cybersecurity solutions are essential components of a robust defense against the evolving threats posed by AI. As AI continues to advance, SMBs must remain adaptable and prepared to navigate the ever-changing cybersecurity landscape to thrive in the digital age.

Digital Partners