11/26 (三) 上午議程

AI 驅動的網路犯罪崛起 The Rise of AI-Enabled Cybercrime

Fortinet 全球威脅情報副總裁

從董事會到熱門新聞播客，關於 AI 可用性與應用的討論無所不在。這並不令人意外——AI 的創新與熱潮確實無處不在。AI 無疑在許多方面改善了人類社會，從提升企業效率到在醫療與教育等領域創造更佳成果。

資安從業人員同樣受益於 AI，他們利用這項技術提升威脅偵測與回應速度，透過自動化異常與漏洞偵測來強化防護。資安團隊也運用 AI 驅動的工具分析模式、預測並防範攻擊，以因應持續演變的威脅。

相對地，不斷成長的網路犯罪市場正藉由「低成本、易取得」的優勢蓬勃發展。隨著 AI 的演進，它已降低成為駭客的門檻，使有志成為網路罪犯的人更容易取得執行成功攻擊所需的戰術與情報，即便缺乏專業知識。除了提高可及性之外，AI 也讓惡意攻擊者能製作更具說服力的釣魚攻擊，內容具備語境感知與在地化語言特性。

本演講將探討以 AI 武器化工具為基礎的「犯罪即服務」（CaaS, Crime-as-a-Service）模式，並說明如何採取最佳實務來預備與防禦這股日益升高的威脅。

From the boardroom to your go-to news podcast, conversations about the availability of and use cases for AI are everywhere. It’s no surprise why AI innovations and their surrounding excitement are ubiquitous: AI has undoubtedly improved society in many ways, ranging from increasing business efficiencies to generating better outcomes in sectors like healthcare and education.

Cybersecurity practitioners benefit from AI, using this technology to enhance threat detection and response times by automating anomaly and vulnerability detection. Teams also use AI-driven cybersecurity tools to predict and prevent attacks by analyzing patterns and adopting evolving threats.

Conversely, the growing cybercrime market is thriving on cheap and accessible wins. As AI evolves, it’s already lowering the barrier to entry for aspiring cybercriminals, increasing access to the tactics and intelligence needed to execute successful attacks regardless of an adversary’s knowledge. In addition to enhancing accessibility, AI enables malicious actors to create more believable phishing threats, complete with context-aware and regionalized language. This talk will explore crime as a service (CaaS) models that are built off weaponized AI tooling, and examine best practices to prepare and defend against this rising threat.