Safe Mode Podcast Google’s John Hultquist on how APTs are using generative AI
Feb 6, 2025
In this engaging discussion, John Hultquist, Chief Analyst for Google Threat Intelligence Group, and cybersecurity expert Derek B. Johnson unpack the evolving tactics of Advanced Persistent Threats (APTs) using generative AI. They highlight the qualitative differences between AI-generated and human-crafted social engineering tactics. The conversation dives into how AI accelerates cyberattacks and the pressing need for stronger defense systems. Additionally, they touch on the friction involving Elon Musk and cryptocurrency against a backdrop of federal cybersecurity challenges.
AI Snips
Chapters
Transcript
Episode notes
AI's Current Impact on Threat Actors
- Threat actors are using AI, but it hasn't drastically changed their capabilities yet.
- Focus on realistic threats, like social engineering, rather than hypothetical scenarios.
AI: Productivity vs. Capability
- AI is currently enhancing attacker productivity, not fundamentally changing their capabilities.
- A significant concern is the potential for AI to enable novel attack capabilities.
AI Use Reveals Skill Gaps
- Analysis of AI usage reveals attackers' skill levels.
- Less skilled actors struggle to adapt AI-generated code, showing current limitations of LLMs.