The Dual Edge of AI: Promise and Perils for Cyber Defence

  • April 30, 2024
  • Allessia Chiappetta, JD Candidate, Osgoode Hall Law School, and M. Imtiaz Karamat, Associate, Deeth Williams Wall LLP

Artificial Intelligence (AI) has obtained mainstream celebrity with the success of technologies like OpenAI’s ChatGPT fueling its popularity on a global scale. Apart from the average consumer, AI is revolutionizing traditional approaches for businesses across every industry. Amidst its diverse roles, the use of AI in cybersecurity is becoming an important topic in the broader conversation that is characterized by promise and peril – AI being a major asset for both organizations bolstering their security defences and threat actors working to infiltrate those safeguards.

The AI Takeover

Canadians are embracing AI now more than ever with a recent poll finding that at least 30% of Canadians now use AI tools. On the consumer-level, AI may be used for completing household tasks, listening to music, and navigating social media. However, the capabilities of AI are even more evident in its business applications. For example, organizations are using AI to enhance hospitality services; provide financial planning services; automate their online platforms; and optimize internal operations by reducing the time required for less complex tasks.

AI has also been popularly introduced into cybersecurity strategies as part of threat detection and response. Canadian companies like BlackBerry Ltd. have notably embraced AI in cybersecurity. Once known as a smartphone powerhouse, BlackBerry is now a cybersecurity firm renowned for its Cylance AI products, which aid in detecting malware and preventing cyberattacks. In October 2023, the company announced a generative AI-based cybersecurity assistant, designed to predict customer needs and proactively provide information without requiring manual queries.

By harnessing AI-driven technologies, organizations can proactively identify and mitigate potential cyber risks, thereby safeguarding their digital assets and operations. Yet, alongside these advancements come new challenges, particularly when AI is used by threat actors seeking to exploit an organization’s cyber vulnerabilities. This article explores the multifaceted implications of AI in cybersecurity, drawing insights from industry developments, scholarly research, and government guidance. From the transformative potential of AI in securing critical infrastructure to the considerations surrounding its deployment when in the wrong hands, we navigate through the complexities of this evolving paradigm.