CISOs brace for rise in AI-driven cyber attacks & domain threats

Almost all chief information security officers (CISOs) anticipate an increase in cyber attacks over the coming three years, attributing the escalation to an increasingly complex and artificial intelligence (AI)-driven threat landscape.
Research conducted among 300 CISOs, chief information officers (CIOs), and senior IT professionals by CSC has highlighted significant concerns over cybersquatting, domain-based attacks, and ransomware. The report, entitled "CISO Outlook 2025: Navigating Evolving Domain-Based Threats in an Era of AI and Tightening Regulation," identifies these as the foremost global cyber threats for 2024, with expectations that such risks will continue to rise as cybercriminals use AI and other advanced technologies for more sophisticated attacks.
Among those surveyed, 98% expect a surge in cyber attacks within three years. A substantial proportion, 87%, identified AI-powered domain generation algorithms (DGAs) as a direct threat. These algorithms allow for the mass production of domains that can be used for malicious purposes, heightening the challenge for security teams.
AI concerns grow
The proliferation of AI-driven threats is not limited to DGAs. The survey found that 97% of respondents have concerns regarding the risks of permitting third-party AI systems to access company data, pointing towards the necessity of stringent governance frameworks for AI implementation in business contexts.
Despite these mounting threats, the confidence among CISOs in their organisations' ability to address domain-based attacks remains low. Only 7% of those questioned expressed that they were "very confident" in their current defensive measures, while a further 22% believe they have suitable tools in place. The lack of confidence has been attributed to gaps in preparedness, with some organisations potentially underestimating both the intricacies of domain security and the pace at which these threats evolve.
Domain security vulnerabilities
The survey underscores persistent vulnerabilities within DNS and domain-related infrastructure, which remain a focal point for cyber attackers seeking to exploit weaknesses and compromise companies' digital assets. "DNS and domain-related infrastructure are prime targets for cybercriminals," says Ihab Shraim, chief technology officer for CSC's Digital Brand Services division. "These attackers conduct extensive reconnaissance to identify vulnerabilities, hijack subdomains, and impersonate brands at a massive scale. With the growing availability of AI-driven tools and off-the-shelf attack kits, these threats are only going to accelerate. A single DNS compromise can take down email, websites, customer portals, and even phone networks. Companies that don't act quickly may find themselves navigating not just technical fallout, but reputation and regulatory consequences as well."
CISOs regard cybersquatting, domain-based attacks, and ransomware as primary risks looking forward. The concern is justified given the increased use of AI techniques that make attacks more difficult to detect and counteract.
On the human side, the research points out that security vulnerabilities are exacerbated by gaps in internal education and expertise. Security professionals have noted that not every organisation is equipped to monitor domain activity around the clock, making them susceptible to attacks that exploit these security oversights. "The human element continues to be the biggest security vulnerability," adds Nina Hrichak, vice president of CSC's Digital Brand Services. "As cybercriminals grow more sophisticated, internal education and awareness are falling behind. DNS hijacking and subdomain takeovers have become mainstream concerns, but not every organisation possesses the internal expertise to monitor domain activity in real time. That's where experienced partners can offer vital insights and agility to help organisations stay ahead of the curve."
Global input
The survey, delivered in partnership with Pure Profile, included responses from IT leaders and security professionals in Europe, the United Kingdom, North America, and Asia Pacific. The focus was to understand both current concerns and the approaches being taken to manage evolving cyber risks in the context of new regulations and the rising influence of AI in the cybercrime landscape.
Among the wide range of security issues identified, DNS hijacking and distributed denial-of-service (DDoS) attacks remain significant challenges. The report highlights that a single compromise can disrupt critical business functions, from email systems to customer portals, with the potential for wide-reaching operational, reputational, and regulatory consequences.
The findings suggest that increased investment in security measures, education, and external expertise is likely to play a critical role as organisations across sectors prepare for a wave of new and AI-enhanced cyber threats.

Try Our AI Features

Explore what Daily8 AI can do for you:

Learn with AIFact CheckingText to SpeechAI Summary

Related Articles

CBS News

21 minutes ago

• CBS News

Pilot killed in Beverly plane crash identified by his family as Geoffrey Andrews

The pilot killed in a small plane crash in Beverly, Massachusetts on Thursday has been identified by his family. Geoffrey Andrews was piloting the plane when it crashed shortly after takeoff Thursday on Sam Fonzo Drive in an industrial park near Beverly Regional Airport. A second man in the plane was injured. He has not been identified. Police said it appears Andrews was attempting to take off when the plane crashed. The FAA said the plane had just left Beverly and was heading to Ticonderoga Municipal Airport, which is about 100 miles north of Albany, New York. "We thank the investigators who we trust will conduct a thorough investigation into what caused this catastrophic loss of life. We also pray for his passenger in the plane and are sending his loved ones strength through this difficult time," said Andrews' family in a statement. His family said Andrews was a staff scientist at MIT Lincoln Laboratory and graduated from Lehigh University and got his doctorate from Purdue University. They said he loved to fly and was working to become a certified flight instructor. Andrews is survived by his wife, Gentry, who is expecting their first child in October. "Beyond his love for flight, Geoffrey was a charismatic, beautiful soul who cared deeply for his family and friends and always had a kind word for others. He was so excited about the upcoming birth of their baby," said his family in a statement.

Daily News Egypt

22 minutes ago

• Daily News Egypt

MSMEDA injects EGP 17.4bn into 900k women-led enterprises over past decade: CEO

Bassel Rahmy, CEO of the Micro, Small, and Medium Enterprise Development Agency (MSMEDA), announced that the agency has allocated EGP 17.4bn over the past 10 years to support women-led micro and small enterprises across Egypt. This funding has empowered around 900,000 projects and contributed to the creation of approximately 1.2 million job opportunities. Rahmy highlighted that 54% of the total funding—equivalent to EGP 9.4 billion—was channelled into projects located in Upper Egypt, border governorates, and other underserved areas most in need of development. He emphasised the agency's determination to double this financing in the coming period, in line with government efforts to enhance women's economic participation and unlock their potential as drivers of national growth. The announcement was made during the 'Women in SMEs' Conference, organised by the Women Entrepreneurs Club under the patronage of MSMEDA. The event gathered representatives from leading financial institutions, entrepreneurship support organisations, ambassadors, and distinguished female leaders from across various economic sectors. In his remarks, Rahmy reiterated MSMEDA's commitment to working in close coordination with government bodies, civil society organisations, and development partners to further empower women economically. He stressed the importance of supporting women not only in launching new enterprises, but also in expanding and developing existing ones across industrial and service-based sectors. This approach, he noted, aims to cultivate a new generation of pioneering women entrepreneurs who can contribute meaningfully to Egypt's economic transformation. Rahmy also underlined the significance of the agency's participation in such conferences, as they serve as platforms to exchange expertise, share successful models, and align with international best practices—particularly in relation to the SME sector and women's empowerment. These efforts, he said, are central to Egypt's development agenda and are fully aligned with Egypt Vision 2030 and the United Nations Sustainable Development Goals. During the event, Rahmy presented the full range of services MSMEDA offers to support entrepreneurs, including both financial and non-financial assistance. He noted the agency's ongoing efforts to expand the accessibility of its services across the country, especially for women and young people, by leveraging digital transformation tools and platforms. Mona Mourad, Founder and CEO of the Women Entrepreneurs Club, affirmed the Club's commitment to enhancing the capabilities of Egyptian women and enabling them to take the lead in medium and large-scale enterprises. She pointed to the conference's collaboration with the American University in Cairo's Centre for Entrepreneurship and Innovation and Alcatel-Lucent as a prime example of how public-private-academic partnerships can accelerate women's leadership in digital transformation and institutional growth. Mourad commended MSMEDA for its pivotal role in building the capacities of women across various economic activities, particularly by supporting productive, sustainable projects. She added that the agency's presence at the event reflects the growing synergy between state institutions and development actors, both local and international, in creating a thriving ecosystem for female entrepreneurship. In recognition of their success, Rahmy honoured several women who have built notable businesses with MSMEDA's support. Among them was Yasmin El-Sweifi, who owns a thriving restaurant chain in Cairo; Mona Sami, who founded a business producing educational and interactive toys; and Sherine Saleh, who established a manufacturing project for medical and cosmetic supplies. Their achievements, Rahmy said, are a testament to the transformative impact of targeted support and inclusive development policies.

Daily News Egypt

22 minutes ago

• Daily News Egypt

The Role of Crisis Management Committees in Responding to Global Shocks: A Central Pillar for National Stability

As geopolitical tensions intensify and the world grapples with overlapping crises, the need for robust and agile crisis management frameworks has never been greater. These crises—whether political, economic, environmental, or military—often have profound repercussions that reverberate far beyond their points of origin, threatening national security, economic resilience, and social cohesion. Crisis management committees serve as a frontline defence, coordinating resources, streamlining decision-making, and ensuring institutional coherence in times of uncertainty. Their importance becomes especially pronounced during periods of regional or global escalation, when swift, informed action can mean the difference between containment and chaos. Forming such committees has become an essential component of statecraft, aimed at assessing risk, preparing for contingencies, and executing rapid-response strategies. These bodies are typically empowered with wide-ranging authority, allowing them to act without bureaucratic delay. While some are convened for specific emergencies and disbanded once the threat subsides, others operate permanently—continuously monitoring risk landscapes, developing response protocols, and running stress tests to gauge national readiness. Models of Crisis Committees: Proactive vs. Reactive Countries typically adopt a hybrid model, combining two core approaches: Proactive Committees: These focus on foresight, risk mapping, and preventive planning, aiming to avert crises before they emerge. Reactive Committees: These are mobilised to deal with fast-unfolding events, executing decisive actions to limit damage and restore stability. Global Best Practices Several international experiences underscore the value of institutionalised crisis management: Japan: The National Emergency Committee is globally respected for its meticulous disaster preparedness, particularly for natural events like earthquakes and tsunamis. During the 2011 earthquake, its rapid coordination and pre-existing plans helped contain the disaster's impact. United States: FEMA (Federal Emergency Management Agency) is one of the most powerful emergency response institutions in the world. With wide-ranging authority, it leads national efforts to respond to hurricanes, pandemics, and other large-scale emergencies. India: The National Disaster Management Authority, created in 2005, is a comprehensive body that manages both natural and man-made disasters. It focuses on long-term planning, stakeholder coordination, and swift response to protect vulnerable populations. Egypt's Experience: Pre-Emptive Strategy in Action Egypt has taken notable steps to institutionalise crisis response mechanisms, particularly in response to mounting regional instability. In a forward-looking move, the government recently established a Supreme Crisis Management Committee to monitor the potential fallout from the escalating Iran-Israel conflict. Significantly, this committee has a proactive mandate, aiming to assess possible economic consequences before they materialise. Government officials have stressed that Egypt currently faces no direct threat to its domestic market or national security. Nonetheless, the committee—chaired by the Prime Minister—will meet regularly to evaluate developments, safeguard macroeconomic stability, and shield the country's ongoing reform programme from external shocks. It will also work in close coordination with advisory councils, sovereign entities, economic experts, and national security institutions, including the armed forces and police. By integrating both public and private sector input, the committee represents a whole-of-government approach to risk management. Egypt's Crisis Management Committee is poised to become a cornerstone of the country's national resilience architecture. In an increasingly unpredictable world, the ability to respond swiftly, strategically, and collectively is no longer optional—it is foundational. With foresight and coordinated action, such committees can transform crises from existential threats into manageable challenges. Mohamed Abdel Aal – Banking expert