SlashNext, a leader in SaaS-based integrated cloud messaging security across email, web and mobile, announced the launch of Generative HumanAI, an artificial intelligence solution that uses generative AI to defend against advanced business email compromise (BEC), supply chain attacks, executive impersonation and financial fraud.
This solution joins SlashNext’s existing HumanAI capabilities, which mimic human threat researchers by combining natural language processing, computer vision and machine learning with relationship graphs and deep contextualization to thwart sophisticated multi-channel messaging attacks. Generative HumanAI anticipates potential AI-generated BEC threats by using AI data augmentation and cloning technologies to assess a core threat and then spawn thousands of other versions of that same core threat, which enables the system to train itself on possible variations.
SlashNext’s solution already has a 99.9 percent detection rate with its existing AI capabilities. The addition of Generative HumanAI ensures customers will have this same peace of mind, despite threat actors leveraging widely available AI tools to aid their efforts. Generative AI technologies can generate voice, text, and images in response to short prompts and simulate human-like responses faster than humans.
Most famously, ChatGPT – a chatbot built by OpenAI and funded by Microsoft – can answer questions in clear, well-punctuated prose and it has become the symbol of this powerful new AI wave.
Threat researchers warn that generative AI already is being used maliciously to automate thousands of uniquely tailored phishing messages and variations of those messages, increasing the threat actor’s success rate. Such emails reflect similar emotions and urgency as the originals, but with slightly altered wording that makes it hard to identify bots as the senders.
The SlashNext solution is patent pending and has been under development internally for more than two years. SlashNext is at the forefront of multichannel messaging security, and its threat researchers recognized that generative AI would soon change the face of BEC attacks.
Features of HumanAI include:
- BEC Generative AI Augmentation – Auto generates thousands of new BEC variants from today’s threat to stop tomorrow’s attacks.
- Relationship Graphs & Contextual Analysis – A baseline of known-good communication patterns and writing styles for each employee and supplier to detect unusual communications and conversation styles.
- Natural Language Processing – Analyzes text in the email body and attachments for the topic, tone emotion, intent and manipulation triggers associated with social engineering tactics.
- Computer Vision Recognition – Leverages SlashNext’s LiveScan to inspect URLs in real-time for any visual deviations such as image and layouts to detect credential phishing webpages. For instance, HumanAI uses computer vision to detect extremely subtle deviations from imposter Microsoft 365 log-in pages and blocks access.
- File Attachment Inspection – Analyze social engineering traits of attachments and malicious codes to stop ransomware.
- Sender Impersonation Analysis – Evaluates headline details and email authentication results to stop impersonation attacks.
SlashNext sources an enormous database for zero-hour detections to analyze 700,000 new threats per day. SlashNext HumanAI is effective because it sources threats for human compromises with the most virtual sandbox crawlers of any security vendor. The unique differentiation of HumanAI is its ability to spot how threat actors play off human emotions, such as sending “Urgent!” requests that ask users to take wrong actions based on fear. HumanAI simulates those same human emotions and behaviors in its detection process.