While organizations will naturally continue to rely on third-party tools to detect incoming attacks, Rogers says this strategy ultimately fails with zero-day-style attacksm that leverage brand new exploits. “Most businesses find themselves in a situation where they don’t know anything has happened until a user calls and says there is a load of files they can no longer access,” he says.

Various security tools are now using AI to assist them in detecting attacks, but today, these are far from a panacea. “I don’t think there’s any AI product that can make people stop clicking malicious links,” Rogers says. “And I don’t think
cybersecurity products have caught up with attackers when it comes to using AI.” That’s because there’s no penalty if an attacker fails; that time around, they simply don’t get their prize and can try again. An AI-based cybersecurity
tool would need to be nearly perfect, says Rogers, a promise that’s still far off for the emerging technology