Latest news with #cyberthreats


Forbes
13 hours ago
- Business
- Forbes
Deterministic AI's Role In Public Sector Cloud Security
Matthew Sweeney, CPO and cofounder, Gomboc AI. Public sector organizations are under relentless pressure to modernize and digitize. With citizens demanding better services and governments facing ever-evolving cyber threats, deploying public infrastructure in the cloud is no longer optional—it's mission-critical. Yet, this transition is fraught with risks: misconfigurations, compliance gaps and the constant specter of data breaches. Many public sector organizations are investigating AI to mitigate these threats. Let's look at the role AI can play in cloud security, and what businesses should consider as they move forward with this emerging technology. The High Stakes Of Public Infrastructure When a government agency migrates sensitive citizen data or essential services to the cloud, the margin for error shrinks considerably. A single misstep—whether due to a misconfigured IAM policy or an unencrypted database—can compromise personal information or destabilize critical infrastructure. Unlike commercial environments, public agencies operate under unique constraints: long procurement cycles, budget limitations and strict regulatory oversight. At the same time, the complexity of public cloud deployments is accelerating. Research shows that: • 81% of organizations experienced at least one cloud security incident in 2022. • Public sector agencies have seen a surge in cloud-based attacks in recent years. • 78% of organizations use two or more cloud providers, and 54% manage hybrid cloud environments. • More cloud data breaches are caused by misconfigurations or human error than any other threat, rather than by vulnerabilities in the software itself. • In fact, as for 2020, 88% of government agencies viewed cloud misconfiguration as a top security threat. These trends point to a larger truth: The biggest risk to cloud infrastructure is not the cloud itself, but how it's configured and managed. The Generative AI Paradox Generative AI is rapidly being adopted to help automate infrastructure provisioning and remediation tasks. These tools can accelerate code generation, documentation and even basic troubleshooting. However, their probabilistic nature introduces risk. Generative models often synthesize outputs based on patterns, not guarantees. As a result, they may generate infrastructure code that appears valid but fails to meet organizational policies, introduces vulnerabilities or lacks auditability. A study from researchers at the University of Oslo, Norway, analyzed AI-generated applications and found frequent instances of insecure defaults, including improperly configured file uploads and authentication flaws. Similarly, Apple's 2024 paper on multimodal LLM reasoning cautions that current generative models perform inconsistently on complex tasks and should not be relied on for critical reasoning or high-stakes decision making. That said, generative AI still holds value. For public sector use cases that involve templating, writing documentation or automating routine scripts in controlled environments, these tools can save time. To assess fit, teams should ask: • What level of accuracy and compliance is required for this task? • Is there a review or validation mechanism in place post-generation? • Would an inconsistent or partially correct output introduce risk? Understanding Deterministic AI Deterministic AI provides an alternative to probabilistic, generative approaches. Rather than predicting outcomes based on large-scale language models, deterministic systems follow predefined rules, policy engines and structured logic to produce consistent and auditable outputs. Deterministic AI platforms often integrate with CI/CD pipelines, scanning Infrastructure as Code (IaC) such as Terraform or CloudFormation. When an issue, such as an insecure storage configuration or a missing encryption flag, is detected, the system can automatically propose or generate a fix. Unlike generative tools, the fix is policy-aligned, traceable and tailored to the organization's specific security or compliance requirements. Third-party analysts are beginning to recognize the value of this approach. Gartner, for instance, has introduced 'AI Assistants for Infrastructure as Code' in multiple Hype Cycle reports (subscription required), signaling growing industry validation for tools that emphasize accuracy, policy enforcement and developer trust over broad generalization. Implementation Considerations Deterministic AI is not a plug-and-play solution; it requires thoughtful implementation. Organizations unfamiliar with this approach, especially those accustomed to generative tooling, may face a learning curve. Some of the key challenges and considerations include: • Policy Definition: Teams must clearly define guardrails, compliance standards and remediation actions. Without this foundation, deterministic tools cannot deliver value. • Integration Overlap: Some public sector environments already rely on a patchwork of legacy scanners or manual review systems. Integrating deterministic tooling into CI/CD workflows may require refactoring existing processes. • Scope Limitation: Deterministic AI excels in domains with clear policy logic, such as infrastructure security or access control. It is not ideal for creative or ambiguous tasks where flexibility and interpretation are required. Before implementing, technical leaders should: 1. Conduct a readiness assessment to identify critical infrastructure areas with high misconfiguration risk. 2. Map existing policies and controls to determine where automation is safe and enforceable. 3. Pilot the tool in a low-risk environment to refine policies and observe results. Conclusion For public sector agencies, where the stakes are high and accountability is non-negotiable, deterministic AI offers a compelling path forward. By understanding the strengths and limitations of both generative and deterministic approaches, public sector leaders can make informed decisions that enhance resilience, reduce human error and accelerate modernization with confidence. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?

Malay Mail
2 days ago
- Politics
- Malay Mail
DPM Zahid: Govt to roll out multi-ministry blitz to tackle 53pc surge in child sexual crimes in Malaysia
PUTRAJAYA, July 29 — The government will adopt an integrated approach involving various ministries and agencies to address the sharp rise in cases of sexual crimes against children, which have surged by 53.2 per cent over the past four years. Deputy Prime Minister and National Social Council (MSN) chairman Datuk Seri Dr Ahmad Zahid Hamidi said it will involve the Home Ministry, Royal Malaysia Police, Youth and Sports Ministry, and Women, Family and Community Development Ministry to tackle the issue comprehensively, firmly and effectively. 'Statistics show that cases of sexual crimes against children rose from 2,541 in 2020 to 3,892 in 2024. 'The number of victims also increased from 2,561 to 3,988 over the same period, a jump of 55.7 per cent,' he said in a statement after chairing the MSN Meeting No. 2/2025 here today. Ahmad Zahid said technological advancements and the industrial revolution have led to increasingly sophisticated criminal modus operandi, including the use of deepfake technology and digital identity theft. Other planned measures include organising the 'Child Protection: Addressing Cyber Threats and Sexual Crimes' seminar in November. The meeting also reviewed the implementation of the National Social Policy 2030 and the development of the 2026-2030 Action Plan, which is in its final phase and will be presented to the Cabinet in October. Ahmad Zahid said the issue of homeless individuals with mental disorders who have not received treatment due to the lack of special placement facilities was also raised. 'The council supports the Health Ministry's initiative to set up a task force to establish a psychiatric nursing care home,' he said. The meeting also discussed the proposed formation of a special committee on Islamic preschool education to coordinate matters related to registration, safety, health, as well as curriculum and teaching staff strategies. In addition, the meeting examined the issue of skills mismatch among graduates, with Department of Statistics data showing that 2.06 million graduates are currently working in sectors not commensurate with their qualifications. 'To address this strategically, the MyMAHIR initiative, led by the Human Resource Ministry and TalentCorp, has been launched. 'To date, 66 industry-driven training programmes have been approved under the MyMAHIR Future Skills Talent Council, covering high-impact sectors such as semiconductors, artificial intelligence, data analytics and the green economy. 'These programmes not only provide high-skilled training but also come with job guarantees, offering an average starting salary of RM3,000 to RM6,000 per month,' he said. Ahmad Zahid said that starting this year, MSN membership has been expanded to include the Energy Transition and Water Transformation Ministry, Agriculture and Food Security Ministry, Natural Resources and Environmental Sustainability Ministry, Tourism, Arts and Culture Ministry, and the Minister in the Prime Minister's Department (Federal Territories) to strengthen policy implementation impact. — Bernama

Malay Mail
2 days ago
- Politics
- Malay Mail
DPM Zahid: Govt to roll out multi-ministry blitz to tackle 53pc surge in child sexual crimes
PUTRAJAYA, July 29 — The government will adopt an integrated approach involving various ministries and agencies to address the sharp rise in cases of sexual crimes against children, which have surged by 53.2 per cent over the past four years. Deputy Prime Minister and National Social Council (MSN) chairman Datuk Seri Dr Ahmad Zahid Hamidi said it will involve the Home Ministry, Royal Malaysia Police, Youth and Sports Ministry, and Women, Family and Community Development Ministry to tackle the issue comprehensively, firmly and effectively. 'Statistics show that cases of sexual crimes against children rose from 2,541 in 2020 to 3,892 in 2024. 'The number of victims also increased from 2,561 to 3,988 over the same period, a jump of 55.7 per cent,' he said in a statement after chairing the MSN Meeting No. 2/2025 here today. Ahmad Zahid said technological advancements and the industrial revolution have led to increasingly sophisticated criminal modus operandi, including the use of deepfake technology and digital identity theft. Other planned measures include organising the 'Child Protection: Addressing Cyber Threats and Sexual Crimes' seminar in November. The meeting also reviewed the implementation of the National Social Policy 2030 and the development of the 2026-2030 Action Plan, which is in its final phase and will be presented to the Cabinet in October. Ahmad Zahid said the issue of homeless individuals with mental disorders who have not received treatment due to the lack of special placement facilities was also raised. 'The council supports the Health Ministry's initiative to set up a task force to establish a psychiatric nursing care home,' he said. The meeting also discussed the proposed formation of a special committee on Islamic preschool education to coordinate matters related to registration, safety, health, as well as curriculum and teaching staff strategies. In addition, the meeting examined the issue of skills mismatch among graduates, with Department of Statistics data showing that 2.06 million graduates are currently working in sectors not commensurate with their qualifications. 'To address this strategically, the MyMAHIR initiative, led by the Human Resource Ministry and TalentCorp, has been launched. 'To date, 66 industry-driven training programmes have been approved under the MyMAHIR Future Skills Talent Council, covering high-impact sectors such as semiconductors, artificial intelligence, data analytics and the green economy. 'These programmes not only provide high-skilled training but also come with job guarantees, offering an average starting salary of RM3,000 to RM6,000 per month,' he said. Ahmad Zahid said that starting this year, MSN membership has been expanded to include the Energy Transition and Water Transformation Ministry, Agriculture and Food Security Ministry, Natural Resources and Environmental Sustainability Ministry, Tourism, Arts and Culture Ministry, and the Minister in the Prime Minister's Department (Federal Territories) to strengthen policy implementation impact. — Bernama


Gulf Business
21-07-2025
- Gulf Business
Dubai Police arrest cybercrime gang behind fake online investment schemes
Image: Dubai Media Office The arrests were carried out by the Anti-Fraud Centre at the General Department of Criminal Investigation, following extensive monitoring and investigation efforts, according to a report published by the Dubai Media Office. The suspects had contacted victims through phone calls, falsely presenting themselves as representatives of legitimate electronic trading and investment platforms. They used these claims to gain victims' trust and convince them to transfer funds with the promise of fast and high returns, police said. The funds were then funneled into bank accounts located outside the UAE, authorities added. Dubai Police made the arrest as part of larger efforts to raise awareness about cyber threats The operation was part of the ongoing national awareness campaign, launched to educate the public about rising cyber threats. Dubai Police said they acted swiftly after receiving several reports from victims and were able to identify the gang's identities and locations before making the arrests. Legal procedures have been initiated to refer the suspects to the appropriate judicial authorities.
Yahoo
19-07-2025
- Business
- Yahoo
The cost of disharmony: Why banks must rethink the money lifecycle
Financial systems today are often anything but harmonious. With rising complexity, cyberthreats and regulatory pressures creating costly disruption, it's perhaps no surprise to hear that money is going astray. Conducted in collaboration with Oxford Economics, our latest report, The Harmony Gap, finds that every single hour, the average organisation loses $11,200 to financial disharmony. Annually, this figure reaches $98.5m. Large banks (those with more than $20bn of AUM) report an average of $124m in annual losses because of tensions within their money lifecycle. The question is, why, and how? The money lifecycle To answer this, we must first and foremost understand the lifecycle's three key phases. These are: Money at Rest, which covers deposits and treasury accounts; Money in Motion, covering payments and transfers; and Money at Work, which is trading, lending, investing and capital deployment. While all three phases face challenges, the money in motion stage is where the majority of problems surface. Specifically, our research finds that 51% of financial friction occurs here, due to the complexity of multi-party transactions, cross-border payments, legacy infrastructure and inconsistent data standards. This friction opens the door to a number of vulnerabilities, with the most significant - and costly - being cybersecurity threats. 35% of executives surveyed ranked this their top concern, with $31.7m in annual losses attributed to cyberattacks alone. Other major pain points include financial fraud, whereby $21.6m is lost annually, particularly affecting the tech and fintech sectors. A further $17.2m of combined losses were a direct result of operational inefficiencies and human error, posing a concern for internal training and compliance processes. All this being said, banks have an integral role to play in not just recovering costs but ensuring the safety of money throughout the entire lifecycle, whether that is through infrastructure or fraud protection. Banks owe it to their customers to not only safeguard the money lifecycle but modernise it for the future. Solving the disharmony dilemma Banks must take some bold and structural steps to solve the disharmony that exists within modern banking architecture. To create harmony across the money lifecycle - every system, platform and decision needs to be connected, intelligent and secure. This demands strategic investment in four key areas. First, banks must prioritise cybersecurity defence. Our research shows 37% of companies experience cyberthreats daily, and 74% face critical or high-profile threats on a monthly basis. Unsurprisingly, nearly a quarter (24%) already identify cybersecurity enhancement as their top investment focus. However, while there is concern over this technological hurdle, only 53% of companies offer regular cybersecurity training. If banks want to protect customers from cyberthreats we need to see meaningful cyber resilience built into every layer of the banking architecture. Secondly, we need to see improved operational efficiency. One in five institutions already list this as a core priority, recognising that streamlined processes can reduce costs, enhance compliance and enable faster responses to customer needs. But we are still waiting to see true action. As we head into the future, the banks that invest in tech for efficiency will build the most effective operations. This is evidenced by respondents from firms with dedicated fintech teams reporting higher sales growth than those without, with 83% of these companies seeing revenue increases after embedding fintech solutions. The third key ingredient to a harmonious money lifecycle for banks is employee training and upskilling. It is all well and good to be investing in and implementing new technologies, but these will sink if there is no one around to steer the ship. A skilled, resilient workforce is critical for long-term success, ensuring that digital transformation is embedded throughout the organisation, not just in the IT department. Finally, banks should embrace AI and machine learning - not as a silver bullet, but as powerful tools to enhance decision-making and enable smart automation that complements, rather than replaces, human workers. Despite the hype surrounding AI, 73% of respondents cited high implementation and maintenance costs as major obstacles to adoption. Additionally, 64% pointed to a lack of in-house expertise, while 58% struggled with integrating AI into existing systems. To succeed, banks must invest in the right talent and infrastructure to fully realise AI's potential. When banks achieve true harmony across these four areas, they reduce risk, improve agility, accelerate innovation and unlock sustainable competitive advantage. Looking ahead With $98.5m in annual losses at stake (and more for larger institutions), the price of inaction far outweighs the cost of change. But this isn't just a financial issue. Disharmony drags on innovation, slows down agility, and erodes customer trust. Banks that move now to close the harmony gap through rethinking how money flows, investing strategically, and focusing on integration and intelligence will be better equipped to lead in a world defined by embedded finance, AI-powered insights, and real-time expectations. The opportunity is clear: Rethink the lifecycle. Invest smartly. Build a more secure, connected, and harmonious financial future. Kanv Pandit is Head of International Banking and Payments Sales at FIS "The cost of disharmony: Why banks must rethink the money lifecycle" was originally created and published by Retail Banker International, a GlobalData owned brand. The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action on the basis of the content on our site. Errore nel recupero dei dati Effettua l'accesso per consultare il tuo portafoglio Errore nel recupero dei dati Errore nel recupero dei dati Errore nel recupero dei dati Errore nel recupero dei dati