UAE Issues Urgent Warning as AI-Powered Cyberattacks Surge to 700,000 Daily
The United Arab Emirates (UAE) is grappling with an alarming rise in cyber threats, particularly those driven by artificial intelligence (AI). Recent reports indicate that the country is facing between 500,000 and 700,000 cyberattacks daily, with a significant uptick in incidents attributed to state-backed actors, including those from Iran. This escalation highlights the urgent need for heightened awareness and robust cybersecurity measures among individuals and organizations alike.
Rising AI-Driven Threats
In collaboration with the Department of Government Enablement, a comprehensive guide has been released as part of the “Our Community is Ready” campaign. This guide, available in both Arabic and English, identifies six major cyber threats that typically intensify during crises. These threats encompass phishing schemes, online fraud, account breaches, malware, identity theft, and the creation of fake social media accounts. Notably, the guide also addresses AI-enabled fraud and deepfakes, which involve sophisticated tactics such as voice cloning and the generation of fabricated images and videos that mimic trusted entities. Additionally, data leaks through untrusted websites remain a pressing concern.
The primary objective of this guide is to enhance public awareness of cyber risks and to promote safe digital practices. It aims to empower individuals to safeguard their personal data and online accounts, especially during emergencies and exceptional circumstances.
Preventive Guidelines
The guide outlines essential preventive measures to mitigate cyber risks, bolster community awareness, and ensure business continuity. It emphasizes that cyberattacks often escalate during crises due to various factors. These include the exploitation of fear and confusion, which can make individuals more vulnerable to deception, as well as rushed digital decision-making without proper verification. The spread of misinformation and increased reliance on unofficial channels for information further exacerbate the situation.
Indicators of Fraud Attempts
Several warning signs of potential fraud attempts have been identified in the guide. These include urgent requests for personal information or verification codes, suspicious links, unexpected requests for money transfers, and messages claiming improbable prizes or unrealistic offers. Additionally, login alerts from unfamiliar devices and unsolicited voice or video messages requesting sensitive information are significant red flags. The guide also cautions against messages that are unusually formal or that impersonate official entities.
Individuals are advised to avoid common pitfalls, such as clicking on unknown links, reusing passwords across multiple platforms, and sharing one-time passwords (OTP). The guide stresses the importance of verifying the authenticity of messages before responding and refraining from resharing unverified content.
Essential Crisis-Time Protocols
The Centre has urged the public to adhere to critical guidelines during crises. These include relying solely on official sources for information, avoiding the dissemination of unverified content, and exercising caution with messages that exploit exceptional circumstances. Verifying the authenticity of audio and video content before sharing is also crucial, as is following official cybersecurity instructions.
The Centre has highlighted that fear-inducing messages, urgent requests for information, and unusual communication styles are common tactics employed by fraudsters to pressure individuals into making hasty decisions.
AI-Powered Cyberattacks Attributed to Iran
Dr. Mohammed Al Kuwaiti has noted that AI has become a fundamental component of modern cyberattack toolkits. Hostile actors, particularly from Iran, are leveraging AI for various malicious activities, including reconnaissance, data gathering, and vulnerability detection. They are also enhancing phishing messages, developing malware, and creating misleading content to support information warfare.
Dr. Al Kuwaiti emphasized that recent attacks signify a qualitative shift in cyberattack methodologies, with AI enabling faster, more convincing, and cost-effective operations.
Advanced National Cyber Defense System
In response to these escalating threats, the UAE Cybersecurity Council operates within an advanced and integrated national framework focused on continuous monitoring, analysis, and readiness enhancement. Key initiatives include adopting a zero-trust model, activating the National Cybersecurity Operations Center (NSOC), and deploying smart monitoring systems. The Council is also engaged in monitoring disinformation, conducting national cyber crisis simulation exercises, and sharing real-time security alerts with relevant entities.
Dr. Al Kuwaiti stressed that the UAE adopts a proactive approach to cybersecurity. The country does not wait for threats to materialize; it maintains continuous readiness to protect national infrastructure and services.
Human Element: The First Line of Defense
Dr. Al Kuwaiti underscored the importance of individuals as the first line of defense in the current cybersecurity landscape. Key recommendations for individuals include avoiding unknown links, never sharing passwords or verification codes, enabling multi-factor authentication, and using strong, unique passwords. Regularly updating systems and applications, avoiding unsecured public Wi-Fi networks, and backing up critical data are also crucial.
He cautioned against believing or sharing unverified videos, images, or recordings, emphasizing that awareness must be faster than phishing attempts and more accurate than fabricated content.
Up to 700,000 Cyberattacks Daily
The scale of cyber threats facing the UAE is unprecedented, with Dr. Al Kuwaiti revealing that the country is currently experiencing between 500,000 and 700,000 cyberattacks daily. These attacks predominantly target strategic sectors during periods of heightened pressure. The increase in both the volume and sophistication of attacks has been particularly notable since February 28, coinciding with regional escalations and a greater reliance on AI and deepfake technologies.
Dr. Al Kuwaiti concluded that while the intensity of attacks is expected to rise, the UAE’s national cybersecurity system is proactively detecting and containing threats while ensuring the continuity of essential services. He reiterated that the current landscape presents not just traditional cyberattacks, but more complex threats powered by AI and social engineering.
Source: gulfnews.com
Keep reading for the latest cybersecurity developments, threat intelligence and breaking updates from across the Middle East.
