Abstract
Data breaches and security incidents are becoming increasingly costly and statistics show that hackers are highly motivated to acquire confidential data as the financial benefits are substantial. Hence, business data has become a top priority to be compromised. Threat Intelligence has been recently introduced by organisations as a means to gain greater visibility of cyber threats, especially data breaches, in order to better protect their digital assets. A well-planned implementation of threat intelligence enables organisations to predict and (at least partially) prevent cyber crime, such as data breaches or data exfilteration ({\ie} attempts to move data outside an organization’s secure perimeters). This allows an organisation to better understand different aspects of threats, including identifying the adversary and how and why they intend to compromise digital assets, consequences of attacks, which assets can be compromised, to what level and how to detect threats, how to respond to them. A key enabler to implement threat intelligence is to build sophisticated data-driven architectures using machine learning that allows an organisation's cyber data (stored in different silos throughout an organisation's digital infrastructure) to be managed effectively. However, one of the biggest challenges of machine learning in cybersecurity is to enable an efficient implementation that scales in today's complex threat landscapes and digital infrastructure, respectively. In this paper, we review the data breaches problem and discuss the challenges of implementing machine learning to mitigate security threats and data intelligence to predict cyber threats that could potentially lead to data breaches leakage. Then illustrate how the future of effective threat intelligence is closely linked to efficiently applying machine learning approaches in this field, and outline future research directions in this area
Highlights
Data breaches are one of the top cybersecurity problems affecting the digital economy (Confente et al, 2019; Tao et al, 2019)
Cybersecurity is a promising area for Artificial Intelligence (AI)/Machine Learning (ML) and we discuss the hype around the ability of AI-powered security security solutions that claim to “do it all.”
A number of problems such as the detection of intrusions, breaches, etc. can be effectively dealt with this approach given that they are constantly evolving. Another promising ML technique is modeling with Bayesian networks (BNs), which developed in the ML community since the late 1980s (Neapolitan, 2003; Korb et al, 2010)
Summary
Data breaches are one of the top cybersecurity problems affecting the digital economy (Confente et al, 2019; Tao et al, 2019). The security team of an enterprise analyses system logs as the primary way of conducting forensics, and properly managed logs can be used as evidence in a court of law for prosecution purposes This approach does not limit the effect of a data breach nor stop a data breach. Threat intelligence has been recently introduced as an enabler to predict future potential security threats even before they reach targeted organizations, by applying basic building blocks of data intelligence and data-driven architectures. We discuss the problem of data breaches and the challenges of implementing threat intelligence to stop advanced security threats such as data breaches. We discuss the challenges of enabling threat intelligence, and we point out future research directions
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
