AI mō te Urupare Aituā: Ruku Hōhonu

Ina pā mai he takahi haumarutanga tukutuku, he mea nui ngā hēkona. He puhoi rawa te tauhohe, ā, ka tīmata hei pōrearea iti noa iho, ka huri hei āwangawanga mō te kamupene katoa. Koinei tonu te wāhi e whai hua ai te AI mō te urupare ki ngā aituā - ehara i te mea he mea tino pai (ahakoa he pono, ka rite ki tētahi), engari he rite ki tētahi hoa mahi kaha e takahi ana i te wā e kore e taea e te tangata te neke tere. He mārama te whetu raki i konei: te whakaiti i te wā noho me te whakakoi i te whakatau . E whakaatu ana ngā raraunga o te mara tata nei kua tino heke ngā wā noho i roto i te tekau tau kua hipa - he tohu kei te tino whakapiko te kitenga tere me te aromatawai tere i te pihi mōrearea [4]. ([Ratonga Google][1])

Nō reira, me wetewete tātou i ngā mea e whai hua ai te AI i tēnei wāhi, me titiro ki ētahi taputapu, me te kōrero mō te take e whakawhirinaki ai ngā kaitātari SOC ki - me te kore whakawhirinaki hoki - ki ēnei kaitiaki aunoa. 🤖⚡

Ngā tuhinga ka pai pea koe ki te pānui i muri i tēnei:

🔗 Me pēhea te whakamahi i te AI whakaputa i roto i te haumarutanga tukutuku
Te tūhura i te tūranga o te AI i roto i ngā pūnaha kimi me te urupare mōrearea.

🔗 Ngā taputapu whakamātautau AI: Ngā otinga pai rawa atu e whakamahia ana e te AI
Ngā taputapu aunoa pai rawa atu e whakarei ake ana i te whakamātautau urunga me ngā arotake haumarutanga.

🔗 Te hangarau matihiko i roto i ngā rautaki taihara ipurangi: He aha te hiranga o te haumarutanga ipurangi
Te whakamahinga a ngā kaiwhakaeke i te AI me te take me tere te whanake o ngā parepare.

He aha te mea e whai hua ai te AI mō te Urupare Aituā?

• Tere : Kāore te AI e ngenge, e tatari rānei mō te kawheine. Ka rapua e ia ngā raraunga pito, ngā rangitaki tuakiri, ngā huihuinga kapua, me ngā whakawhitiwhitinga whatunga i roto i ngā hēkona, kātahi ka puta mai he arahi kounga teitei ake. Ko te whakawhāititanga o te wā - mai i te mahi a te kaiwhakaeke ki te tauhohenga a te kaiwawao - te mea nui [4]. ([Ratonga Google][1])

• Te Pūmautanga : Ka ngenge te tangata; kāore ngā mīhini. Ka whakamahia e te tauira AI ngā ture ōrite ahakoa he 2 i te ahiahi, he 2 rānei i te ata, ā, ka taea e ia te tuhi i tōna ara whakaaro (ki te tika te whakarite).

• Te Mōhio Tauira : Mā ngā whakarōpūtanga, te kimi i ngā rerekētanga, me ngā tātaritanga e ahu mai ana i te kauwhata e whakaatu ngā hononga e ngaro ana i te tangata - pērā i te nekehanga taha rerekē e herea ana ki tētahi mahi hou kua whakaritea me te whakamahinga PowerShell whakapae.

• Tauine : Ahakoa e taea ana e te kaitātari te whakahaere i te rua tekau ngā matohi i te hāora, ka taea e ngā tauira te huri i ngā mano, te whakaiti i te haruru, me te whakarahi ake i te whakarei ake kia tīmata ai ngā rangahau a te tangata kia tata atu ki te take tūturu.

He mea whakamīharo, ko te mea e tino whai hua ai te AI - ko tōna tikanga pūmau - ka taea hoki te whakakatakata. Waiho kia kaua e whakatikatikaina, ā, ka taea e ia te whakarōpū i tō tuku piza hei whakahau-me-te-mana. 🍕

Whakataurite Tere: Ngā Utauta AI Rongonui mō te Urupare Aituā

Tuhipoka: he mea āta koretake ngā utu a ngā kaihoko. Whakamātauria me te whakaatu i tētahi taunakitanga poto e pā ana ki te angitu ka taea te ine (hei tauira, te tapahi i te MTTR mā te 30%, te tapahi rānei i ngā hua hē mā te haurua).

Me pēhea te kite a te AI i ngā tūmomo mōrearea i mua i tō kitenga

Anei te wāhi e tino whakamere ai. Ko te nuinga o ngā puranga kāore e whakawhirinaki ki te mahi tinihanga kotahi - ka whakakotahi i te kimi i ngā hapa, ngā tauira e tirotirohia ana, me ngā tātari whanonga:

• Te kimi i ngā āhuatanga rerekē : Whakaarohia te "haerenga kore e taea," te pikinga ohorere o ngā mana whakahaere, te kōrerorero rerekē rānei i waenga i ngā ratonga i ngā hāora rerekē.

• UEBA (tātari whanonga) : Mena ka tangohia ohoreretia e te kaiwhakahaere pūtea ngā gigabytes o te waehere pūtake, e kore te pūnaha e aro noa.

• Te makutu hononga : E rima ngā tohu ngoikore - te rere ke, ngā taonga kino, ngā tohu kaiwhakahaere hou - ka hanumi hei take kaha, tino maia.

He nui ake te hiranga o ēnei kitenga ina whakaritea ki ngā rautaki, ngā tikanga, me ngā tukanga a te kaiwhakaeke (TTP) . Koia te take MITRE ATT&CK ; ka iti ake te tūponotanga o ngā whakatūpato, ā, ka iti ake te tūponotanga o ngā rangahau [1]. ([attack.mitre.org][2])

He aha te Hiranga tonu o te Tangata i te taha o te AI

Ka tere ake te mahi hangarau matihiko, engari ka tere ake te horopaki mā te tangata. Whakaarohia he pūnaha aunoa e tapahi ana i te waea Zoom a tō Tumu Whakahaere Matua nā te mea i whakaaro ia he tango raraunga. Ehara i te mea koinei te huarahi hei tīmata i te Mane. Ko te tauira e mahi ana ko:

• AI : ka tukatuka i ngā poro rākau, ka whakarōpū i ngā mōrearea, ka tūtohu i ngā mahi e whai ake nei.

• Te tangata : te paunatia te hiahia, te whakaaro ki ngā hua o te pakihi, te whakaae ki te pehitanga, te tuhi i ngā akoranga.

Ehara i te mea he mea pai noa iho tēnei - engari he mahi pai rawa atu e taunakitia ana. Ko ngā anga IR o nāianei e kī ana kia whakaaetia e te tangata me ngā pukapuka mahi kua tautuhia i ia taahiraa: te kimi, te tātari, te pupuri, te whakakore, te whakaora. Ka āwhina te AI i ia taahiraa, engari ka noho tonu te kawenga tangata [2]. ([NIST Computer Security Resource Center][3], [NIST Publications][4])

Ngā Mahanga AI Noa i roto i te Whakautu Aituā

• Ngā Huarahi Hē i Ngā Wāhi Katoa : Ka totohu ngā kaitātari i roto i te haruru nā ngā tūāpapa kino me ngā ture koretake. He mea nui te tika me te whakaoho i ngā mahara.

• Ngā Wāhi Matapo : Kāore ngā raraunga whakangungu o inanahi e whakaatu i te mahi toi o tēnei rā. Mā te whakangungu anō me ngā whakatauira ATT&CK e whakaiti i ngā āputa [1]. ([attack.mitre.org][2])

• Whakawhirinaki Nui : Ko te hoko i ngā hangarau whakahirahira ehara i te mea ka whakaiti i te SOC. Puritia ngā kaitātari, engari me aro noa ki ngā rangahau whai uara nui ake [2]. ([NIST Computer Security Resource Center][3], [NIST Publications][4])

Tohutohu ngaio: me whakamahi tonu i te mana whakahaere ā-ringa - ina nui rawa te mahi aunoa, me whai huarahi koe ki te whakamutu me te hoki whakamuri tonu.

He horopaki o te ao tūturu: Te hopunga wawe o te pūmanawa utu kino

Ehara tēnei i te whakatairanga ā-ao. He maha ngā takahi ture ka tīmata mai i ngā mahi tinihanga "noho whenua" - PowerShell . Mā ngā tūāpapa me ngā kitenga ML-directed, ka taea te tohu tere i ngā tauira whakatinanatanga rerekē e hono ana ki te urunga tohu me te horapa taha. Koinei tō whai wāhi ki te wehe i ngā pito mutunga i mua i te tīmatanga o te whakamunatanga. E whakanui ana ngā aratohu a te US i te takiuru PowerShell me te whakatinanatanga EDR mō tēnei take whakamahinga - ka tauine noa te AI i taua tohutohu puta noa i ngā taiao [5]. ([CISA][5])

He aha te mahi e whai ake nei i roto i te AI mō te Urupare Aituā

• Ngā Whatunga Whakaora-ā-Iho : Ehara i te mea ko te whakatūpato anake - te taratahi-aunoa, te huri i te huarahi o ngā waka, me te hurihuri i ngā mea ngaro, katoa me te huri whakamuri.

• AI Whakamārama (XAI) : E hiahia ana ngā kaitātari ki te "he aha" me te "aha." Ka tipu te whakawhirinaki ina whakaatuhia e ngā pūnaha ngā mahi whakaaro [3]. ([NIST Publications][6])

• Whakaurunga Hōhonu Ake : Kia kaha ake te hononga o EDR, SIEM, IAM, NDR, me te hokohoko tikiti - he iti ake ngā tūru hurihuri, he maeneene ake ngā rerenga mahi.

Mahere Whakatinanatanga (Whaihua, Kaua e Whakangawari)

1. Tīmata ki tētahi kēhi pānga nui (pērā i ngā matū i ahu mai i te ransomware).

2. Maukati i ngā inenga : MTTD, MTTR, ngā hua teka, penapenahia te wā o te kaitātari.

3. Ngā kitenga mahere ki ATT&CK mō te horopaki rangahau tiritahi [1]. ([attack.mitre.org][2])

4. Tāpirihia ngā kēti hainatanga tangata mō ngā mahi mōrearea (te wehenga pito, te whakakorenga tohu) [2]. ([NIST Computer Security Resource Center][3])

5. Me haere tonu te porowhita rangi-ine-whakangungu anō . I te iti rawa i ia hauwhā.

Ka taea e koe te whakawhirinaki ki te AI i roto i te urupare ki ngā aituā?

Ko te whakautu poto: āe, engari me ētahi whakatūpato. He tere rawa te neke o ngā whakaekenga ipurangi, he nui rawa ngā raraunga, ā, he tangata anō hoki te tangata. Ehara i te mea he kōwhiringa te kore aro ki te AI. Engari, ehara te whakawhirinaki i te tikanga tuku pōuri. Ko ngā whakatakotoranga pai rawa atu ko te AI me te tohungatanga tangata, me ngā pukapuka tākaro mārama, me te māramatanga. Me whakaaro ki te AI pērā i te hoa mahi: i ētahi wā he nui rawa te hiahia, i ētahi wā he mangere, engari he rite ki te takahi i te wā e tino hiahia ana koe ki te uaua.

Whakaahuatanga meta: Akohia me pēhea te whakarei ake a te urupare a te AI i ngā aituā i runga i te tere, te tika, me te manawanui o te haumarutanga tukutuku - me te pupuri tonu i te whakatau a te tangata kia mau tonu.

Ngā Tohuwāhi:
#AI #Haumarutanga Ipurangi #Whakautu Aituā #ROA #KiteRiri #Aunoatanga #HaumarutangaPūrongo #Ngā Mahi Haumarutanga #Ngā Auahatanga Hangarau

Ngā Tohutoro

1. MITRE ATT&CK® — Papanga Matauranga Whaimana. https://attack.mitre.org/

2. Putanga Motuhake a te NIST 800-61 Arotake 3 (2025): Ngā Taunakitanga me ngā Whakaaro mō te Whakautu i ngā Aituā mō te Whakahaere Mōrearea Haumarutanga Ipurangi . https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r3.pdf

3. Anga Whakahaere Mōrearea AI NIST (AI RMF 1.0): Mārama, Whakamārama, Whakamārama. https://nvlpubs.nist.gov/nistpubs/ai/nist.ai.100-1.pdf

4. Ngā Auahatanga-M a Mandiant : Ngā Auahatanga Wā Noho Waenga o te Ao. https://services.google.com/fh/files/misc/m-trends-2025-en.pdf

5. Ngā Tohutohu Tahi a te CISA mō ngā TTP Ransomware: Te Takitaki PowerShell me te EDR mō te Kitenga Moata (AA23-325A, AA23-165A).

   • https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-325a

   • https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-165a

Kimihia te AI Hou i te Toa Kaiāwhina AI Whaimana

Mō Mātou