From the security challenges derived from the rise of artificial intelligence (AI) to the increasing legal liabilities placed on Chief Information Security Officers (CISOs), 2023 has been a busy year for the CISO community – and 2024 shows no signs of slowing down.

Our research and security experts at Sonatype anticipate the cybersecurity landscape will shift in the coming year, as CISOs continue to grapple with the impact of AI on software development, new global cybersecurity regulations, and ever-evolving malicious threats.

To help you stay on top of the latest trends (and keep your program safe), we tapped Sonatype’s Stephen Magill, Vice President of Product Innovation, for a webinar on the “Top 5 trends every CISO needs to know for 2024.” A summary of his predictions is below.

AI’s Impact on Cybersecurity

The first trend discussed was the increasing impact of AI on cybersecurity. Magill emphasized the rising concerns surrounding malicious attacks on AI systems, exemplified by a recent data leakage incident within ChatGPT.

While data breaches aren’t new, researchers were able to extract training data from a production system with controls to prevent such breaches, underscoring the critical need for CISOs to operationalize AI usage. As enterprises embrace AI technology for various applications, they need to carefully consider the data being fed into such systems, especially in risk-averse and regulated environments.

AI Capabilities and Pitfalls

Building on the AI theme, Magill predicted that the use of AI in software development will accelerate in 2024. While AI offers significant time-saving for developers, there are increasing concerns about the security of code produced by generative AI. Studies indicate higher defect rates and security issues in code generated by AI technologies – meaning checks through code review processes, software composition analysis (SCA) tooling, and static application security testing (SAST) will become (Read more...)