BANGKOK (ANN/THE NATION) – Organisations must leverage artificial intelligence (AI) responsibly to avoid data breaches and safeguard their reputations, cautioned National Cyber Security Agency (NCSA) Secretary-General AVM Amorn Chomchoey during a cybersecurity briefing Monday.
Highlighting AI’s potential to improve efficiency and reduce operational costs, Amorn warned of the risks associated with improper usage of the technology. He noted that some organisations inadvertently expose sensitive data by processing it on public AI platforms, resulting in significant vulnerabilities.
To maximise the benefits of AI while mitigating risks, Amorn advised organisations to set clear objectives, particularly in enhancing responses to system failures and evaluating long-term cost efficiency.
Amorn underscored the growing sophistication of cyberattacks, where hackers employ tactics like creating fake websites, deploying malware in network systems, and crafting AI-generated phishing emails to deceive victims.
He identified small and medium enterprises (SMEs) as particularly vulnerable due to limited cybersecurity budgets, which can lead to critical issues such as customer data breaches and diminished business confidence.
Key Cybersecurity Recommendations
To address these challenges, Amorn proposed the following measures:
Define AI Usage Guidelines: Establish clear policies on the permissible use of AI to prevent inadvertent data leakage.
Conduct Cybersecurity Training: Organise regular sessions to educate employees on identifying and responding to cyber threats, such as inspecting suspicious email links, setting secure passwords, and maintaining reliable data backups.
Implement Robust Security Measures: Strengthen network protections through tools like firewalls, data encryption, two-factor authentication, and access right management to secure organisational systems.
Amorn assured that the public sector, including the NCSA, has initiated training programmes aligned with international standards to bolster cybersecurity awareness. These initiatives aim to equip businesses, regardless of size, with the skills and knowledge needed to counter cyber threats effectively.