Artificial Intelligence & Machine Learning , Next-Generation Technologies & Secure Development , Video

Advanced Malware: Why AI Can't Help All Hackers

Howard Marshall of Accenture Security on the AI-Generated Malware Landscape
Howard Marshall, global intelligence lead, Accenture Security

The fear that generative AI tools, such as ChatGPT, could turn a low-sophisticated "script kiddie-type hacker" into a sophisticated adversary on the level of a nation-state is unfounded, said Howard Marshall, global intelligence lead, Accenture Security.

See Also: 2024 CISO Insights: Navigating the Cybersecurity Maelstrom

Marshall says most hackers lack the expertise and education to create sophisticated malware. While AI is evolving and adapting rapidly, the technology is not yet mature enough to automate the intricate process of creating malicious code effectively, he said. Unsophisticated attackers lack the knowledge to properly formulate queries and may not comprehend the inaccuracies in the generated output.

"In nation states, people with big budgets, folks that know what they're doing, AI will help them create [malware] faster. But there are not nearly as many of those people as there are at the bottom end of the threat spectrum," he said. "For that reason, the initial concern that gen AI will create 10 million more sophisticated hackers that can create eloquent malware - that's not going to happen anytime soon."

In this video interview with Information Security Media Group at Black Hat USA 2023, Marshall discussed:

  • How AI is helping sophisticated threat actors;
  • The impact of quality control around generative AI for adversaries and defenders;
  • The rising interest of adversaries in targeting MacOS.

Prior to joining Accenture, Marshall spent more than 20 years working with the FBI before retiring as the deputy assistant director of the agency's Cyber Division. He held six other positions during his tenure, including special agent in charge of the Louisville Division.


About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.