OpenAI Makes Its Initial Investment in Cybersecurity
The Rise of Generative AI and Its Threats
Generative AI technology has greatly increased the capabilities of cybercriminals, giving them new tools to carry out malicious activities. From creating realistic deepfakes of executives to fabricating fake receipts, the potential for misuse is alarming.
OpenAI’s Investment in Cybersecurity
OpenAI, a leader in the generative AI sector, recognizes the challenges posed by this technology in the wrong hands. Recently, the company invested in a New York-based startup called Adaptive Security, which specializes in cybersecurity measures. This investment, part of a $43 million Series A funding round co-led by OpenAI’s startup fund and Andreessen Horowitz, marks OpenAI’s inaugural foray into the realm of cybersecurity.
Adaptive Security’s Innovative Approach
Adaptive Security employs sophisticated techniques to help organizations recognize and counter threats generated by AI. Their platform simulates AI-driven cyberattacks, creating realistic scenarios that can deceive employees. For instance, users might receive a call from a simulated voice of a company executive requesting sensitive information, ultimately demonstrating how easy it can be for hackers to impersonate trusted figures.
Comprehensive Training Solutions
The platform from Adaptive Security goes beyond just phone calls; it also includes spoofed text messages and emails. This training aims to identify vulnerabilities within a company and teach staff how to recognize potential threats more effectively. The focus is particularly on social engineering hacks, where attackers manipulate employees into taking harmful actions, like clicking on malicious links. Incidents related to these techniques have led to significant financial losses in various companies, exemplified by Axie Infinity’s staggering $600 million loss due to a deceptive job offer.
The Impact of AI on Social Engineering
As the co-founder and CEO of Adaptive Security, Brian Long notes, the growing capabilities of AI are making social engineering attacks simpler and more effective. Since its launch in 2023, Adaptive Security has garnered over 100 customers, with positive feedback contributing to its appeal to investors such as OpenAI.
Brian Long’s Entrepreneurial Background
Brian Long is no stranger to the startup world, having successfully founded two other companies: TapCommerce, a mobile advertising firm sold to Twitter, and Attentive, which has achieved a remarkable valuation of over $10 billion. His extensive experience in the field brings credibility to Adaptive Security as it navigates the evolving landscape of cybersecurity.
Utilization of Funding for Expansion
The recent financial support will primarily be allocated to hiring engineers who can develop and enhance Adaptive Security’s product offerings. This aim is crucial to staying ahead in the “arms race” against increasingly sophisticated cyber threats.
The Landscape of Cybersecurity Startups
Adaptive Security is not operating in isolation. Numerous other cybersecurity startups are emerging to combat the expanding risks associated with AI misuse. For instance:
- Cyberhaven has recently raised $100 million to assist employees in safeguarding sensitive information from AI tools like ChatGPT.
- Snyk has reported substantial growth in its annual recurring revenue, partly driven by the rise in insecure AI-generated coding.
- GetReal, a startup focused on deepfake detection, raised $17.5 million last month, further highlighting the urgency of addressing these modern threats.
Advice for Employees
As AI technology advances, the likelihood of encountering AI-driven threats increases. Brian Long offers practical guidance for company employees wary of voice cloning: "Delete your voicemail." This straightforward suggestion underscores the importance of taking proactive steps to protect oneself from potential impersonation attacks.
In summary, while generative AI brings numerous benefits, it also poses significant threats. Companies must remain vigilant and invest in training and resources to safeguard against the evolving landscape of cybersecurity risks.
