为通用人工智能做好准备：在人工智能威胁时代构建网络韧性

Building CyberResilience in anAge of Al Threats Version: 01 1 Published: 04 2025 www.immersivelabs.com Introducing theContainer 7 Team This eBook was developed by our new Container7 Team- a group of cybersecurity expertsdedicated to tackling the evolving challenges ofAl-driven threats. Made up of red teamers,threat researchers, cyber drill architects, andthe minds behind our Immersive Labs, the teambrings deep expertise in offensive security,incident response, and resilience engineering. Container 7 represents more than just a name;it's where Immersive's first cyber exercises werebuilt and where we continue to push theboundaries of cyber readiness. This eBookreflects that approach-grounded in real-worldthreats, practical defense strategies, and theneed for continuous improvement. Al ischanging the game. Introduction The Dual Nature of GenAl: Promise and Peril03Why a Cyber Resilience Strategy is Essential Contents GenAl Risk in 2025 Evolving GenAI Cyber Threats0506Predictions for the Next Wave of GenAl-Driven Attacks The Importance of Cyber Hygieneand Continuous Skills Development Why Cyber Hygiene Remains Critical for DefenseExercising for a Cyber-Ready WorkforceBuilding a Continuous-Learning Culture Cyber Drills and the Future of Resilience ProvingandImprovingCyberReadinessExtending Cyber Drills to The BoardroomHow to Know You're Ready: Metrics, Benchmarks, andContinuous Improvement Strategies for GenAl Safeguards Secure-by-DesignforGenAlSystemsIntegrating Advanced Security Controls and ContinuousFeedbackLoopsEmbedding “Prove and Improve" into Your Resilience RoadmapThe Role of Regulatory and Supply Chain Assurance 6.Conclusion and Next Steps 20Summing Up the Roadmap to GenAI ReadinessNext Steps and How to Engage with Immersive Introduction: The Dual Nature of GenA Generative Al (GenAl) is revolutionizingindustries with tools that emulate humancreativity, intelligence, and output. Yet, asthese systems become embedded invirtually all aspects of our digitalinfrastructure and interactions, they exposeorganizations to novel threats-from promptinjection attacks to advanced socialengineering. romise& Peril According to new research, 78% of CIsOsagree that Al-assisted cyber threats arehaving a significant impact on theirorganization, and 45% of cybersecurityprofessionals do not feel prepared forthe reality of Al-powered cyber-threats.* To safeguard their organizations, cyberleaders need to simultaneously preparetheir workforces for rapidly changing GenAlrisk, while implementing risk-reductionprotocols that keep humans in the loop. 78% This e-book outlines how combining time-tested security practices with cutting-edgecyber drills and a secure-by-design culturebuilds lasting cyber resilience for an age ofrapidly evolving GenAl threats. of CISOs agree that Al-assisted cyber threats arehaving a significant impacton their organization. *Source: Darktrace: The State of AI Cybersecurity immersive Evolving GenAlCyber Threats Cybersecurity risk is growing as GenAl becomes ubiquitous.Threat actors are increasinglyusing GenAl to improve theeffectiveness of their social engineering attacks. We see cyber criminals using these tools in mucthe same way most of us do: rapidly automatingcomplex or monotonous tasks, which for malicioactors includes generating more effective phishand smishing messages. This attack vector underscores a broaderchallenge: GenAl systems can be manipulatedin ways that security teams have yet to fullyanticipate. Another threat vector is organizations'own use(or misuse)of GenAl tools, such as Al-assistedcodingtools,vVhich can inadveertently createvulnerethat canbeexif properprotocols arenot inenvironment static securityplongerviaorganizationsnneworks. But, among the most concerning GenAl risks areprompt injection attacks, where a malicious acttricks Large Language Models (LLM) into revealisensitive information. Immersive's research shothat 88% of participants successfully tricked aGenAl bot into giving away sensitive informatioat least one level of an increasingly difficult challeng Predictions for the NextWave of GenAl-Driven Attacks Our experts and many industry analysts anticipate a dramaticescalation in GenAl-assisted attacks. Supply ChainCompromise at Scale: AdversarialArms Race: We have seen threat actors engage withLLMs to perform vulnerability research,either to better understand publiclyreported CVEs and exploits, or to usetheir code review capabilities to comparepatches and generate exploits. Threat actors use LLMs to performreconnaissance against organizations,including researching technologies,platforms, and associations, and use thisintelligence to craft social engineeringattacks leveraging known vulnerabilities. The Importanceof Cyber Hygieneand ContinuousSkills Development In an era of headline-grabbing GenAl tools andthreats, it's easy to overlook the timeless basicsthat remain the cornerstone of effectivecybersecurity. Cyber hygiene isn't about c