Generative AI and the Evolving Cybersecurity Landscape
The rapid advancements in generative AI have significantly expanded the arsenal available to malicious actors. From creating convincing deepfakes of corporate executives to generating counterfeit receipts, the potential for misuse has grown exponentially. OpenAI, a leading name in the generative AI space, is acutely aware of these risks. In response, the company has made its first investment in a cybersecurity startup aimed at combating these emerging threats.
Adaptive Security: A New Player in Cyber Defense
Adaptive Security, based in New York, has secured a $43 million Series A funding round co-led by OpenAI’s startup fund and Andreessen Horowitz. This marks a significant milestone as OpenAI’s inaugural investment in the cybersecurity sector. The startup specializes in simulating AI-generated attacks to train employees in identifying such threats. For instance, an employee might receive a phone call seemingly from their CTO requesting a verification code—only to discover it was a simulated spoof designed for training purposes.
Adaptive Security’s comprehensive platform extends beyond phone calls, encompassing texts and emails as well. It evaluates which departments within a company are most vulnerable and provides targeted training to help staff recognize potential risks. The focus is on social engineering attacks, where human error plays a crucial role. These seemingly simple tactics have historically led to massive financial losses, as seen in the Axie Infinity breach of 2022, where over $600 million was stolen through a fake job offer.
AI Tools and the Rise of Social Engineering Attacks
According to Brian Long, co-founder and CEO of Adaptive Security, AI tools have streamlined the process of executing social engineering hacks. Since its launch in 2023, the startup has amassed over 100 customers. Positive feedback from these clients played a pivotal role in attracting OpenAI’s attention and investment. Long’s entrepreneurial background adds credibility to the venture; he previously sold mobile ad startup TapCommerce to Twitter in 2014 and co-founded ad-tech firm Attentive, valued at over $10 billion in 2021.
With the new funding, Adaptive Security plans to expand its engineering team to enhance product development and stay ahead in the ongoing AI “arms race” against cybercriminals. The company joins a growing list of cybersecurity startups addressing the surge in AI-driven threats. Cyberhaven recently raised $100 million at a $1 billion valuation to prevent employees from inputting sensitive information into tools like ChatGPT. Meanwhile, Snyk attributes part of its annual recurring revenue exceeding $300 million to addressing insecure AI-generated code. Deepfake detection startup GetReal also raised $17.5 million last month.
Practical Advice for Mitigating AI Threats
As AI-based threats become increasingly sophisticated, Brian Long offers straightforward advice for employees concerned about voice cloning by hackers: delete voicemail messages. This simple step can reduce the risk of personal audio data being exploited for malicious purposes.
The Role of Cybersecurity Startups in Combating AI Threats
In an era where AI tools are becoming both a blessing and a curse, companies like Adaptive Security play a crucial role in safeguarding digital ecosystems. By simulating real-world attack scenarios, these platforms prepare organizations to defend against the ever-evolving tactics of cybercriminals. As technology continues to advance, staying informed and proactive remains essential for protecting sensitive information and maintaining trust in digital interactions.
The convergence of AI and cybersecurity represents a double-edged sword, offering both opportunities and challenges. While generative AI enhances productivity and innovation, it simultaneously empowers bad actors with sophisticated tools. Investments in cybersecurity startups signal a collective effort to address these vulnerabilities and ensure that technological progress benefits society as a whole.
