{
  "docId": "019dd923-5e88-73ef-bd5d-d8e3155278d5",
  "docSlug": "77909cdb81dba749",
  "documentTitle": "2023 AI Here and Now Gartner Business Quarterly 3Q23",
  "authorId": "Gartner",
  "authorName": "Gartner",
  "documentKindSlug": "consulting-deck",
  "documentKindLabel": "Consulting deck",
  "sourceTypeSlug": "industry_analyst",
  "sourceTypeLabel": "Industry analyst",
  "presentationDate": null,
  "orientation": "landscape",
  "aspectRatio": 1.778,
  "pageNumber": 47,
  "pageCount": 77,
  "prevPage": 46,
  "nextPage": 48,
  "slideType": "industry_trends",
  "function": "diagnose",
  "density": "overcrowded",
  "nDataPoints": 0,
  "notes": "The slide uses a section divider style with a large number '4'.",
  "elementsJson": [
    "headline_text",
    "bullet_list",
    "paragraph"
  ],
  "metadataConfidence": 1,
  "imagePath": null,
  "slideHref": "/slides/019dd923-5e88-73ef-bd5d-d8e3155278d5/47",
  "deckHref": "/decks/019dd923-5e88-73ef-bd5d-d8e3155278d5",
  "deckJsonHref": "/decks/019dd923-5e88-73ef-bd5d-d8e3155278d5.json",
  "deckAnchorHref": "/decks/019dd923-5e88-73ef-bd5d-d8e3155278d5#slide-47",
  "components": [
    {
      "bbox": null,
      "kind": "callout",
      "text": "Remember that the right order for any security investment is people, process and, only then, technology.",
      "attrs": null,
      "subkind": null,
      "toolName": "Visual emphasis",
      "toolSlug": "visual-emphasis",
      "confidence": null,
      "componentId": "019dd952-5643-744f-8952-0e2a3bfb6be9",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.65,
        "w": 0.35,
        "x": 0.58,
        "y": 0.18
      },
      "kind": "list",
      "text": "Remember that the right order for any security investment is people, process and, only then, technology. Address threats that are tied closely to human interpretation of generated content for which there are no existing technical controls.\nMonitor industry statistics to measure the impact of generative AI on the attacker landscape.\nMake sure you can measure drift in detection rate from existing controls.\nElevate requirements for more adaptive behavioral and ML defenses in your existing security controls.\nChallenge all existing and prospective security infrastructure vendors to outline how their product and research will evolve to address threats and tactics now possible due to generative AI. Beware of overstated claims.\nEvaluate the business dependency of key digital supply chain software and develop playbooks for “zero-day vulnerability” attacks, where malicious actors discover and exploit weaknesses before they are publicly known.\nReduce the number of “blind spots” — assets, transactions and business processes that you cannot monitor for anomalies.\nAddress the potential increased risk of fraudulent content and influence operations on corporate brands.\nAdd generative AI content to security awareness training and phishing simulations. Make business workflows more resistant to realistic phishing campaigns and voice and video impersonations.",
      "attrs": null,
      "subkind": "bullet",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "77964980-3e99-4916-a3ef-f95638ac1e31",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.25,
        "w": 0.28,
        "x": 0.28,
        "y": 0.32
      },
      "kind": "list",
      "text": "Generative AI as a lure: Expect counterfeit GenAI apps, browser plug-ins, applications and websites promising “the best Gen AI” but delivering malware-infected applications.\nDigital supply chain tampering: Embedded third-party GenAI components (libraries, models) could be affected by adversarial tactics, such as training data manipulation.\nAdversarial prompting: This threat includes prompt injection.",
      "attrs": null,
      "subkind": "bullet",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "b8684e7b-a3fa-4e9a-887d-ee104294014b",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.1,
        "w": 0.28,
        "x": 0.28,
        "y": 0.58
      },
      "kind": "paragraph",
      "text": "Generative AI tools will enable cyberattackers to increase the quantity and quality of attacks at low cost. Attackers have already started to exploit the technology's capabilities to craft better malicious and fraudulent content at scale.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "0115b6f9-d75f-4698-b7e0-06ca72285e99",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.1,
        "w": 0.28,
        "x": 0.28,
        "y": 0.72
      },
      "kind": "paragraph",
      "text": "Uncertainty about how successful they will be will require more flexible cybersecurity roadmaps. Security leaders need to reinforce their investments in resilience and in reducing exposure to categories of threats, rather than individual known attacks.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "6d255efc-4e54-46ee-9760-0f0f24cdf9e0",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.15,
        "w": 0.28,
        "x": 0.28,
        "y": 0.13
      },
      "kind": "paragraph",
      "text": "As with any innovation (consider the rise of social media and cryptocurrency as two recent examples), malicious actors will seek creative ways to exploit immature security practices and limited awareness. Perhaps the biggest risk will be generative AI's potential to rapidly create believable fake content.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "b289917a-84bd-4c76-b768-651d67e41bd6",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.05,
        "w": 0.15,
        "x": 0.12,
        "y": 0.23
      },
      "kind": "title",
      "text": "The evolving threat landscape",
      "attrs": null,
      "subkind": "headline",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "375faa37-bb1f-45aa-b3a0-d5791ab4449f",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.03,
        "w": 0.1,
        "x": 0.58,
        "y": 0.13
      },
      "kind": "title",
      "text": "Recommendations:",
      "attrs": null,
      "subkind": "headline",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "bee57409-3c8e-4f1f-a520-6315aa093182",
      "frameworkName": null,
      "frameworkSlug": null
    }
  ],
  "metrics": [],
  "tools": [
    {
      "name": "List presentation",
      "slug": "list-presentation",
      "agent": null,
      "layer": "slide",
      "matchId": "7e2ebc5e-1971-45f7-a851-ce0c51764380",
      "evidence": "Remember that the right order for any security investment is people, process and, only then, technology.",
      "confidence": 0.8
    }
  ],
  "frameworks": [],
  "arcBeats": [
    {
      "to": 77,
      "from": 41,
      "beatId": "d4d1cd2f-fc50-47a7-b518-719d2cc33a44",
      "arcName": "The Sparkline",
      "arcSlug": "sparkline",
      "beatName": "New Bliss",
      "beatSlug": "sparkline-new-bliss",
      "evidence": "The document concludes by providing guidance and recommendations for businesses looking to leverage AI.",
      "position": 3,
      "confidence": 0.8,
      "parentBeatName": "Resolution",
      "parentBeatSlug": "resolution"
    }
  ],
  "loops": [],
  "imagePathAlt": null,
  "thumbSrc": null,
  "thumbSrcAlt": null,
  "locked": true
}