How AI-powered threats are rewriting email security economics (www.techradar.com)

Recent insights reveal that traditional email security systems are increasingly ineffective against AI-powered threats, leading to a significant overhaul in how organizations approach email security. With 65% of email security alerts classified as false positives and enterprise teams spending nearly 25% of their time investigating these alerts, the economic model of security operations is under strain. The emergence of AI has enabled attackers to execute highly personalized assaults that evade conventional detection methods. As a result, security teams, burdened by investigating non-threatening alerts, struggle to protect against more sophisticated attacks. To combat this issue, a new generation of email security architecture is being developed that prioritizes reasoning over pattern recognition. This architecture evaluates emails on two axes: threat indicators and business legitimacy patterns, allowing for improved auto-handling of low-risk threats and significantly reducing analyst workload. This shift can increase productivity up to eightfold, redirecting valuable resources toward proactive threat hunting and risk management rather than futile alerts. As AI-enhanced attacks become more prevalent, companies adopting reasoning-based systems will gain a crucial operational advantage, enabling them to streamline their response to real threats while mitigating the risks and costs associated with false positives.