AI Hacking: Hackers Become More Dangerous Using AI; CERT-In Issues New Cybersecurity Guidelines..

Nowadays, Artificial Intelligence (AI) is the talk of the town everywhere. This technology is making our work easier. However, a deeply alarming aspect of it is also coming to light. The Indian government's cybersecurity agency, 'CERT-In,' has issued a fresh warning. The agency has stated that the landscape of cybersecurity has been completely transformed due to AI. Hackers are now utilizing advanced AI tools. Consequently, their attacks have become faster and far more sophisticated than ever before.

How are hackers utilizing AI?
CERT-In has made several significant revelations in its new cybersecurity blueprint.
Cybercriminals are now extensively leveraging modern technologies such as Generative AI, Large Language Models (LLMs), and autonomous agents.
With the aid of these tools, they can identify vulnerabilities within digital systems with remarkable speed.
They are orchestrating highly precise and dangerous phishing campaigns.
Hackers are developing 'adaptive malware' capable of easily evading legacy or traditional security systems.

The agency notes that, thanks to AI, identifying system vulnerabilities—including exposed services, insecure APIs, and weak digital identities—has become significantly easier.

Outdated Security Policies Are No Longer Sufficient
Today, nearly all companies are deeply interconnected with the internet, cloud systems, software supply chains, and AI platforms. As a result, the scope of cyber threats has expanded across every sector. CERT-In has explicitly stated that traditional 'perimeter-based' security systems are no longer effective. Companies now require a security framework capable of rapidly adapting and robustly withstanding attacks.

CERT-In's New Guidelines for Companies
To counter these threats, CERT-In has advised companies to implement several critical and stringent measures:

Continuous Monitoring: Companies must regularly scan their systems. Continuous monitoring of internet-facing assets, cloud environments, and APIs is essential.

Threat Prioritization: Identify and prioritize risks based on their severity. Focus the utmost attention on securing systems that are directly exposed to the public or constitute part of critical infrastructure.

The 12-Hour Rule: If a critical vulnerability is discovered in a key system, it must be patched within 12 hours.

High-Risk Vulnerabilities: It is mandatory to remediate other high-risk vulnerabilities within 1 to 5 days, depending on the level of threat they pose.

Interim Measures: If a permanent solution or patch for a threat is not immediately available, isolate the affected system from the network. Restrict external access to the system and intensify monitoring.

The Need for Supply Chain and New Frameworks
CERT-In has also expressed concern regarding threats associated with software and digital supply chains. To enhance system transparency and mitigate third-party risks, the agency has recommended the adoption of specific frameworks.

Companies should utilize frameworks such as the Software Bill of Materials (SBOM), AI Bill of Materials (AIBOM), Quantum Bill of Materials (QBOM), and Cryptographic Bill of Materials (CBOM). These tools will enable companies to identify the components used within their software, assess their trustworthiness, and evaluate potential risks posed by third-party technologies.

Disclaimer: This content has been sourced and edited from Amar Ujala. While we have made modifications for clarity and presentation, the original content belongs to its respective authors and website. We do not claim ownership of the content.