JustaqAnyone else having the sinking feeling that defenders are losing pace against bad guy tooling innovations, evolution and lowered barriers of entry?
Geekmaster 👽
@justaq meh, depends on the defender's knowledge and scope of interest. At the SMB level, 100% - they need a lot of help but can't usually afford the tools/personnel necessary. At the mid-large enterprise level, we should be in a place where we are using #AI to complement our efforts, with well-established policies and monitoring capabilities. Using AI against AI is the only way to be successful and keep up with trends. If you don't have some sort of #ML or #AI integrated with your #SecurityPlatform, then yeah - you're in serious trouble. #Hackers are using #AI and #RaaS (which may have a ML backend) already - and that is #ScaryAsFuck
@Geekmaster SMB are 90% of all the worlds economies….
@justaq this is very true, but they have always been an issue from an #InfoSec perspective - which is why ISP's are now offering #SecurityOutOfTheBox with their gateways. I know the @cisacyber has some public/private initiatives specifically for this purpose (helping SMBs), as does #ISC2. I guess we need to setup a #InfoSecCollaborative where Infosec professionals donate their time to help SMBs? Problem there, is who maintains it and where do the SMBs go when there is an incident? #MSPs are expensive and have Customer Service issues (from what I am told). So the question now becomes - #HowCanWeHelpThem?