EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.
How EY can help
-
EY helps government agencies address IT risk, cybersecurity and data privacy. Explore services that can transform outcomes for public sector organizations.
Read more
Issues facing law enforcement and cybersecurity professionals
The first thing to note is, this isn’t an easy lift. Cyber law enforcement agencies and task forces face a global ecosystem where the knowledge to commit cybercrime is freely available on the internet and social media, while GenAI-powered tools to commit these crimes are increasingly available. Would-be threat actors can easily find malware-as-a-service online, meaning the universe of potential hackers, threat actors and cyber criminals is exponentially larger and mainstream in society. The lines separating state-sponsored cyber actors from independent ones have blurred as nation-state affiliated cyber actors rent themselves out to criminal organizations and cyber criminals sell their services to nation states. The SolarWinds attack affected 18,000 public and private sector organizations when third-party software gave unauthorized access to hackers.
All of this is converging as law enforcement agencies face a deluge of traditional cyber data, texts, audio, video, social media — and now, open-access GenAI synthetic content capable of mimicking real threat actor content and events. In this environment, the collation and analysis of the vast volume of complex data needing to be assessed becomes incredibly time consuming, challenging both the speed and success of determining and preventing emerging or active threats. Agencies are increasingly challenged by the need for massive computational capacity and enhanced threat analysis.
5 steps to mount an evolved defense for cybercrime prevention
Governments and their agencies, by their nature, cannot play by the illicit rules used by hackers as terrorists or rogue nation-states because they are constrained by the rule of law and vastly outnumbered. FBI Director Wray has called for a “whole of society” approach to countermand cyber threats, creating joint task forces, sharing operational and analytical capabilities across government, and adopting leading practices from academic and private sector organizations. To further Wray’s collaborative vision for cyber defense, agencies can take definitive steps to better combat the current ransomware and fraud activity and prepare and collaborate in the coming age of AI-driven cybercrime.