As the digital world races forward, Artificial Intelligence (AI) and Machine Learning (ML) have become crucial tools for organisations to safeguard their data.
By Modeen Malick, principal systems engineer at Commvault
The reality is that bad actors are leveraging the technology to launch ever-more complex cyber and ransomware attacks, and countering this rapidly evolving threat requires that organisations fight fire with fire, so to speak.
However, it can prove challenging to understand where AI and ML can be most effectively applied, as well as how to separate genuine benefit from unnecessary hype. Finding the right use cases for AI and ML can improve an organisation’s overall cyber security and recovery posture as well as compliance and operational efficiency, helping to facilitate the cyber resiliency that has become an essential component of business continuity today.
AI is not a new technology, but it has evolved over time and has become extremely efficient for the purposes of data classification and data analysis, also known as predictive AI. Taking this a step further into deep learning and AI models built and trained on large data sets, we get generative AI, which is highly efficient in sentiment analysis, and generating content.
If the right tools are used to solve the right problems and if these solutions are relevant to a business use case, AI holds significant potential to transform businesses.
However, it is important to bear in mind that the same AI and ML tools that are revolutionising business are also available to bad actors, who are now leveraging AI to make ransomware attacks even stealthier and harder to detect. AI is also being leveraged by providers of Ransomware-as-a-Service. To combat any AI driven threat, it is essential to have AI-powered defence capabilities in our arsenal.
A recent research report from Enterprise Strategy Group reveals that 99% of the organisations surveyed believe that built-in AI and ML capabilities are important to supporting backup, data recovery and ransomware efforts. This reinforces how quickly the promise of AI technology has been adopted by the industry as a whole.
The question is, how can organisations leverage AI most effectively to protect data, enhance operational efficiency and improve cyber resilience?
The security posture of the backup environment has become a key area of concern for organisations, because backups and protected copies of data are what organisations rely on when it comes to being able to recover from a cyber crisis. AI and ML can address several common pain points when it comes to data protection and recovery.
This includes using ML-driven data classification to more effectively discover assets that are prime targets for ransomware exfiltration, as well as automation to help improve data management and migration at scale.
Tools like anomaly detection can be hugely beneficial at proactively identifying and flagging suspicious behaviour, while AI can assist in determining the best recovery point, creating effective data recovery strategies, and automating disaster and cyber recovery plans.
Security threats can be catastrophic to organisations, and ransomware is a top threat to overall viability of businesses, becoming increasingly pervasive as bad actors are using more advanced techniques and continue to target backups.
Both AI and ML have an important role to play in enhancing overall cyber security and cyber recovery postures, helping to more effectively and efficiently identify threats, jump start the recovery process, automate intelligent data recoveries, and improve compliance, among other benefits.
Reducing downtime is critical, as businesses cannot afford to lose days or weeks to a cybersecurity event. This is where the real value of AI lies – helping to improve operational efficiency and ensure faster time to protection, detection, and recovery in a constantly evolving technology world.