The RSA Conference, held in San Francisco from May 6 to 9, brings together cybersecurity professionals from around the world. This year's conference is packed with conversations about generative AI: how to use generative AI to protect against attacks and how to protect generative AI itself.
We're bringing together the RSA enterprise technology news that's most relevant to IT and technology decision makers. This article will be updated on RSA with more top tech news.
Google upgrades Google security operations and more with Gemini AI
Google is combining the security capabilities of information security company Mandiant and malware scanner VirusTotal with Gemini AI and Google's user and device fingerprinting in a new offering called Google Threat Intelligence. Available May 6 wherever Google Cloud Security is distributed, Google Threat Intelligence uses Gemini AI to get a top-down view of security data, competing with Microsoft's Copilot for Security.
Additionally, Google announced:
- New detections selected for Google Security Operations that are designed to reduce manual processes and suggest results relevant to Google Cloud in general and updated to include recently detected threats.
- Mandiant AI consulting services, which can bring together both an organization's AI defenses and how an organization's security might be compromised by AI.
- New services taking advantage of Gemini in Security.
microsoft
IBM and AWS research: Unpredictable risks of generative AI worry senior management
IBM and AWS released a report during RSA on how executives think about securing generative AI. The report found that less than a quarter (24%) of respondents said they are including security as part of their generative AI projects, possibly a sign that hyperscalers have a niche to enter as the business of protecting AI projects becomes more common.
Most respondents were concerned about the effect of generative AI on security: 51% said they were worried about unpredictable risks and new security vulnerabilities emerging, and 47% were on the lookout for new attacks targeting AI. IBM introduced its framework to secure generative AI, which launched in January 2024, as a solution.
Risk and governance frameworks will be key to helping protect generative AI, IBM and AWS say in the report. Additionally, IBM is expanding its X-Force Red testing services to AI, including generative AI applications, MLSecOps pipelines, and AI models.
SEE: It's open season on Firefly and Adobe Content Credentials for select bug bounty hunters. (Technological Republic)
Proofpoint Adds AI Detection to Email Security Products
At RSA, Proofpoint announced two new email security services:
- Pre-delivery semantic analysis, detection based on large language models of social engineering emails to stop email fraud or malicious links before they reach Microsoft 365 and Google Workplace inboxes.
- Adaptive Email Security, an integrated cloud email security solution with automatic quarantine and behavioral anomaly explanation for high-value targets.
Both email security services will be available on May 6. Adaptive Email Security is only available on an ongoing basis to select customers who already have standard email security packages and have identified high-risk employees.
Cisco and Splunk expand Cisco Hypershield
On May 6 at RSA, Cisco showed one of the first results from its acquisition of Splunk in March. Cisco added two capabilities to its Cisco Hypershield data center and cloud security product, which can now:
- Detect and block attacks from unknown vulnerabilities within workload environments at runtime.
- Isolate suspicious workloads.
Cisco also announced that Cisco Identity Intelligence AI analytics is now available in the Cisco Duo security platform, adding specific tools to detect identity-based attacks.
Splunk announced on May 6 a new asset and risk intelligence solution called Asset and Risk Intelligence. Splunk Asset and Risk Intelligence is now in early access.
TechRepublic covers RSA remotely.
