Can we really fight AI cybersecurity threats with more AI?

Issue 1 2025 Information Security, Infrastructure


Lisa Strydom.

“In a world where artificial intelligence (AI) is increasingly weaponised by cybercriminals, the question of whether we can effectively combat AI threats with more AI is not merely a technical inquiry but a pressing global concern,’ says Lisa Strydom, Senior Manager, Channels Africa at Veeam.

The rise of AI-generated cyberattacks, such as deepfake technology and automated hacking attempts, has created a cybersecurity arms race. Yet, ironically, it is AI itself that might hold the key to turning the tide in this escalating battle.

As cybersecurity incidents continue to surge, the thousands of job vacancies that remain unfilled due to a shortage of qualified talent means that organisations are left vulnerable to attacks that exploit the very technological advancements designed to drive progress.

If human talent cannot keep pace, AI must act as the force multiplier that bridges the gap, enhancing both threat detection and response capabilities. Is this reliance on AI enough, or are we overlooking critical aspects of cybersecurity that only human expertise can address?

The sheer scale and complexity of modern cyberthreats demand automation, speed, and precision; all qualities that AI excels at. Traditional, human-centric cybersecurity models simply cannot cope with the volume of attacks we face today, while AI can process vast amounts of data, detect anomalies in real time, like in the backup repository, and even pre-emptively thwart attacks before they inflict damage.

One of AI’s most significant contributions to cybersecurity is its ability to detect threats that are invisible to the human eye. For instance, AI models specifically designed to identify deepfake technology can pinpoint digital manipulations that evade human detection. By recognising these subtle manipulations, AI can help prevent misinformation campaigns and fraud on a scale that would be impossible for human analysts to manage alone.

From reactive defence to proactive strategy

The manual monitoring of network traffic and user behaviour is time-consuming and often reactive. Conversely, AI can perform real-time threat analysis, identifying patterns indicative of AI-driven attacks, such as botnet activities or automated hacking attempts. This allows organisations to implement immediate countermeasures, reducing the risk of prolonged breaches. Automation makes cybersecurity more efficient and transforms it from a reactive defence into a proactive strategy.

AI’s scalability is crucial in an era of global, borderless cyberthreats. AI-driven systems can autonomously configure firewalls, diagnose vulnerabilities, and even apply software patches without human intervention. This dramatically reduces the opportunity window for attackers to succeed with their tactics.

Furthermore, AI-enabled security policies can adapt based on historical incident data, continuously evolving to protect against emerging threats.

Building collaborative AI defence networks

AI in cybersecurity should not be confined to isolated systems. Instead, the future lies in collaborative AI defence networks. These networks enable AI systems to share threat intelligence in real time, ensuring that cybersecurity measures are always one step ahead of potential attacks. Such collaboration enhances the overall security ecosystem, creating a global network that learns and adapts from every attack, benefitting all connected organisations.

However, this interconnectedness also poses risks. Collaborative networks could become prime targets for attackers aiming to undermine global security efforts. Therefore, striking a balance between intelligence sharing and securing these networks is essential to the success of AI-powered protection.

Are we at risk of over-reliance?

While AI offers unprecedented advantages in cybersecurity, it is essential to question whether we are risking over-reliance. AI, by its nature, is a tool and is not infallible. If we depend solely on AI to combat AI-driven threats, we may overlook the importance of human intuition, creativity, and judgement. After all, AI systems are still vulnerable to manipulation, such as adversarial attacks where small, calculated inputs cause an AI model to make incorrect decisions.

The cybersecurity workforce must adapt, focusing on training professionals who can both build and supervise AI systems. We need experts who understand AI’s limitations and can intervene when automated systems fail. Until we close the skills gap in the cybersecurity industry, AI will remain a critical ally, but it cannot stand alone.

The stakeholder perspective

For businesses, integrating AI into cybersecurity is not just about staying ahead of threats, but about survival. Investors, customers, and employees all have a stake in the security measures a company adopts.

• Investors: AI minimises the risk of costly breaches, preserving not only financial investments, but also the company’s reputation. A single cybersecurity failure can destroy years of investor confidence.

• Customers: Data Resilience is more critical than ever. AI-enabled encryption and anomaly detection ensure that customers’ private information remains safe, reinforcing trust in an organisation’s brand.

• Employees: With cyberthreats becoming increasingly sophisticated, AI helps protect sensitive employee data, while maintaining operational continuity, ensuring businesses do not grind to a halt due to a cyberincident.

Fighting fire with fire

As Satya Nadella, CEO of Microsoft, aptly put it, “AI is a foundational tool in defending against today’s cyberthreats. Without it, we are fighting a losing battle.”

And while this may be true, it is important to remember that AI is only as powerful as the people guiding its use. To truly protect against AI-driven threats, we need both technological innovation and human insight. By combining AI’s computational power with human expertise, we can build a cybersecurity framework that is resilient, adaptive, and future-ready.

In the end, fighting AI with more AI is not just a strategy – it is a necessity. But it is a necessity that must be tempered with caution, ensuring that the human element remains at the core of cybersecurity efforts. As we move forward in this new era of cyber warfare, one thing remains clear: AI may be the weapon, but human intelligence is the ultimate defence.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
Identity is a cyber issue
Access Control & Identity Management Information Security
Identity and access management telemetry has emerged as the most common source of early threat detection, responsible for seven of the top 10 indicators of compromise leading to security investigations.

Read more...
Identity and authentication
Technews Publishing SMART Security Solutions Access Control & Identity Management Information Security Security Services & Risk Management
Identity authentication is a crucial aspect of both physical security and cybersecurity. SMART Security Solutions obtained insights into the topic and the latest developments from three companies.

Read more...
From QR code to compromise
Information Security News & Events
A new attack vector involves threat actors using fraudulent QR codes emailed in PDF attachments to bypass companies' phishing security measures by requiring users to scan the code with their mobile phones.

Read more...
Organisations fear AI-driven cyberattacks, but lack key defences
Kaspersky Information Security News & Events Training & Education
A recent Kaspersky study reveals that businesses are increasingly worried about the growing use of artificial intelligence in cyberattacks, with 56% of surveyed companies in South Africa reporting a rise in cyber incidents over the past year.

Read more...
Threats, opportunities and the need for post-quantum cryptography
AI & Data Analytics Infrastructure
The opportunities offered by quantum computing are equalled by the threats this advanced computer science introduces. The evolution of quantum computing jeopardises the security of any data available in the digital space.

Read more...
Vodacom Business unveils new cybersecurity report
Information Security IoT & Automation
Cybersecurity as an Imperative for Growth offers insights into the state of cybersecurity in South Africa, the importance of security frameworks in digital resilience and the latest attack methods adopted by cyberattackers.

Read more...
Smart surveillance and cyber resilience
Axis Communications SA Surveillance Information Security Government and Parastatal (Industry) Facilities & Building Management
South Africa’s critical infrastructure sector has to step up its game regarding cybersecurity and the evolving risk landscape. The sector has become a prime target for cybercriminals on top of physical threat actors, and the consequences of an incident can be far-reaching.

Read more...
NIS2 compliance amplifies skills shortages and resource strain
Information Security Security Services & Risk Management
A new Censuswide survey, commissioned by Veeam Software reveals the significant impact on businesses as they adapt to this key cybersecurity directive, with 95% of EMEA businesses siphoning other budgets to try and meet compliance deadline.

Read more...
Axis introduces ACS Edge and cloud storage
Axis Communications SA Surveillance Infrastructure Products & Solutions
Axis Communications has launched two new solutions within the AXIS Camera Station ecosystem, AXIS Camera Station Edge (ACS Edge) and AXIS Camera Station Cloud Storage (ACS Cloud Storage).

Read more...