The RSA Conference, held in San Francisco from May 6-9, brings together cybersecurity professionals from around the world. This year’s conference was filled with discussions about generative AI: how to use it to protect against attacks and how to protect generative AI itself.
We’re rounding up the enterprise business technology news from RSA that’s most relevant to IT and technology decision-makers. This article will be updated throughout RSA with additional technology news highlights.
Google uses Gemini AI to update Google security operations and more
Google is combining the security capabilities of information security firm Mandiant and malware scanner VirusTotal with Gemini AI and Google’s own user and device footprint to launch a new product called Google Threat Intelligence. Google Threat Intelligence, which will be available wherever Google Cloud Security is deployed on May 6, uses Gemini AI to look at security data from the top down, competing with Microsoft’s Copilot for Security.
In addition, Google also announced:
- New planned detections for Google Security Operations are designed to reduce manual processes and present results that are relevant to the broader Google Cloud, updated to include recently detected threats.
- Mandiant’s AI consulting services provide red team analysis of an organization’s AI defenses and how AI can compromise an organization’s security.
- New services that take advantage of Gemini security.
Microsoft enhances Copilot for Security, Defender XDR, Sentinel and Purview
As part of RSA, Microsoft announced a variety of new tools and capabilities for its security solutions portal Microsoft Defender XDR. Security researchers using Defender XDR can now:
- Please see internal risk information.
- Use native operational technology protection to enable them to manage OT and industrial technology control system vulnerabilities directly within Defender XDR.
- Leverage new tools of artificial intelligence to compromise compromised users, including situations where attackers use leaked credentials, credential stuffing, or guesswork to compromise personal accounts.
Microsoft Purview can now discover vulnerable AI touchpoints
In Purview, AI Hub is now available in preview. AI Hub reveals what sensitive data may be shared with AI applications, including Microsoft Copilot, and highlights possible risks. The AI Center will also focus on whether your AI deployment complies with key regulations and standards such as the EU Artificial Intelligence Act and the NIST Artificial Intelligence Risk Management Framework.
Sentinel SOC optimization recommends cost-saving measures, etc.
Microsoft Sentinel will now include SOC optimization, guiding security personnel to manage costs, increase data value and improve defenses.
New integration to Microsoft Copilot for Security AI Assistant
Microsoft Copilot for Security now integrates with Purview, Azure Firewall, Azure Web Application Firewall, and select new partner plug-ins.
IBM and AWS research: Unpredictable risks of generative AI worry executives
IBM and AWS released a report during RSA on how C-suite executives are thinking about securing generative AI. The report found that less than a quarter (24%) of respondents said they include security as part of their generative AI projects – a possible sign that as the business of securing AI projects becomes more mainstream , hyperscalers have a niche to enter.
The majority of respondents are concerned about the impact of generative AI on security, with 51% expressing concern about unpredictable risks and new security vulnerabilities, and 47% concerned about new attacks against AI. IBM has launched the Protection Generation AI Framework, released in January 2024, as a solution.
IBM and AWS noted in the report that risk and governance frameworks will be key to helping ensure the safety of generative AI. Additionally, IBM is extending its X-Force Red testing services to AI, including generative AI applications, MLSecOps pipelines, and AI models.
See: It’s open season on Adobe Firefly and content vouchers for specific bug bounty hunters. (Technology Republic)
McAfee Deepfake Defender will flag fake videos
McAfee has partnered with Intel to detect misinformation and deepfakes as Intel prepares its Core Ultra PCs to have onboard artificial intelligence. Using neural processing units, also known as AI accelerators, McAfee Deepfake Detector tags realistic AI-generated videos.
The Deepfake Detector debuted at CES in January. On May 6, McAfee detailed on RSA that Deepfake Detector is expected to be launched in English “soon” and expanded to other languages.
Proofpoint adds artificial intelligence filtering to email security products
At RSA Conference, Proofpoint announced two novel email security services:
- Pre-delivery semantic analysis, social engineering email detection based on large language models, blocks email scams or malicious links before they reach Microsoft 365 and Google Workplace inboxes.
- Adaptive Email Security, an integrated cloud email security solution that automatically isolates and explains behavioral anomalies of high-value targets.
Both email security services will launch on May 6th.
Cisco and Splunk expand Cisco Hypershield
On May 6, Cisco demonstrated one of the first results of its March acquisition of Splunk at RSA. Cisco has added two capabilities to its Cisco Hypershield data center and cloud security products, which now allow:
- Detect and block attacks from unknown vulnerabilities in runtime workload environments.
- Isolate suspicious workloads.
Cisco also announced that Cisco Identity Intelligence AI analytics are now available in the Cisco Duo security platform, adding specific tools to catch identity-based attacks.
Splunk announced on May 6 the launch of a new asset and risk intelligence solution called Asset and Risk Intelligence. Splunk Asset and Risk Intelligence is now available in Early Access.
TechRepublic is reporting on RSA remotely.
3 Comments
Pingback: Google enhances enterprise SecOps products with Gemini – Tech Empire Solutions
Pingback: Google enhances enterprise SecOps products with Gemini – Paxton Willson
Pingback: Google enhances enterprise SecOps products with Gemini – Mary Ashley