Security News > 2022 > March > How AI can fend off supply-chain attacks
These are examples of supply chain compromises that infiltrate a company's software directly, but there's another common attack vector; email.
How can you filter it from the herd of legitimate emails entering your systems? Darktrace argues that it's time for a new approach.
Whereas a traditional email scanning tool looking for an IoC match might miss an email from a supplier's account, Darktrace argues that looking for even minute deviations from normal can throw up red flags.
Attackers used a supply chain ruse to target 12 employees there with phishing emails.
Antigena scanned the content of the email and compared it to other emails that the real supplier had sent in the past.
With supply chain attackers using multiple routes into victims' systems, Darktrace argues that a multi-faceted approach to monitoring is crucial.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/03/25/ai_supply_chain_attacks/
Related news
- OpenWrt orders router firmware updates after supply chain attack scare (source)
- Update your OpenWrt router! Security issue made supply chain attack possible (source)
- Ultralytics Supply-Chain Attack (source)
- 390,000 WordPress accounts stolen from hackers in supply chain attack (source)
- Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack (source)
- It's only a matter of time before LLMs jump start supply-chain attacks (source)
- New AI Jailbreak Method 'Bad Likert Judge' Boosts Attack Success Rates by Over 60% (source)
- Preventing the next ransomware attack with help from AI (source)
- PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack (source)
- IPany VPN breached in supply-chain attack to push custom malware (source)