Tech Bytes: Researchers identify “enormous potential” for…

A study by researchers at Charles Darwin University (CDU) has uncovered the potential for generative artificial intelligence or GenAI tools to become a crucial asset in fighting cybercrime.

The study, conducted by researchers from CDU’s Energy and Resources Institute and India’s Christ Academy Institute for Advanced Studies, examined GenAI’s potential in penetration testing (pentesting), a security test which identifies weak points in a cyber security system’s defences.

Excellent tool for cyber security testing

“In the reconnaissance phase, ChatGPT can be used for gathering information about the target system, network or organisation for the purpose of identifying potential vulnerabilities and attack vectors,” CDU senior lecturer in Information Technology Dr Shanmugam said.

“In the scanning phase, ChatGPT can be used to aid in performing detailed scans of the target particularly their network, systems and applications to identify open ports, services, and potential vulnerabilities.

“While ChatGPT proved to be an excellent GenAI tool for pentesting for the previous phases, it shows the greatest in exploiting the vulnerabilities of the remote machine.”

Researchers were able to run a series of pentests including reconnaissance, scanning, vulnerability assessments, exploitation and reporting activities with ChatGPT, as well as trying to anonymously log into a server and download files, inspect source codes of webpages, and find data embedded within an archive.

Dr Shanmugam added while the technology could revolutionise pentesting, use of AI to improve cybersecurity must be strictly monitored.

“Organisations must adopt best practices and guidelines, focusing on responsible AI deployment, data security and privacy, and fostering collaboration and information sharing,” he said.

“By doing so, organisations can leverage the power of GenAI to better protect themselves against the ever-evolving threat landscape and maintain a secure digital environment for all.”

Source Link

LEAVE A REPLY

Please enter your comment!
Please enter your name here