惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Stack Overflow Blog
Stack Overflow Blog
PCI Perspectives
PCI Perspectives
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
V2EX - 技术
V2EX - 技术
Google DeepMind News
Google DeepMind News
量子位
博客园_首页
S
SegmentFault 最新的问题
S
Secure Thoughts
F
Full Disclosure
H
Hacker News: Front Page
博客园 - 三生石上(FineUI控件)
U
Unit 42
H
Heimdal Security Blog
N
News and Events Feed by Topic
A
About on SuperTechFans
C
CERT Recently Published Vulnerability Notes
Cyberwarzone
Cyberwarzone
Help Net Security
Help Net Security
The Hacker News
The Hacker News
L
LINUX DO - 最新话题
Application and Cybersecurity Blog
Application and Cybersecurity Blog
罗磊的独立博客
N
News | PayPal Newsroom
Spread Privacy
Spread Privacy
C
Cisco Blogs
C
CXSECURITY Database RSS Feed - CXSecurity.com
云风的 BLOG
云风的 BLOG
A
Arctic Wolf
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Simon Willison's Weblog
Simon Willison's Weblog
B
Blog
人人都是产品经理
人人都是产品经理
TaoSecurity Blog
TaoSecurity Blog
博客园 - 【当耐特】
C
Cyber Attacks, Cyber Crime and Cyber Security
P
Proofpoint News Feed
Hugging Face - Blog
Hugging Face - Blog
I
InfoQ
D
DataBreaches.Net
大猫的无限游戏
大猫的无限游戏
Apple Machine Learning Research
Apple Machine Learning Research
L
LINUX DO - 热门话题
Google Online Security Blog
Google Online Security Blog
V
Visual Studio Blog
V
Vulnerabilities – Threatpost
Know Your Adversary
Know Your Adversary
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
B
Blog RSS Feed

Insights

Absolute, Trellix team up to enhance endpoint security Overcoming the challenges faced by a modern-day SOC Top 3 trade-offs commonly encountered in identity security circles The linkages between privileged access management and zero trust Cyber security in the Pacific: How island nations are building their online defences State sanctioned (cyber) violence, Australia’s next security threat Drawing a line in the sand for cyber conflict Automation: The future of the combat vehicle? Billion-dollar cyber boost: A cash cow for defence SMEs?
ChatGPT is the ultimate phishing tool, so why aren’t companies boosting security budgets?
Daniel Croft · 2025-11-12 · via Insights

The AI revolution has created new risks for Australian and international organisations, and the companies are not preparing enough to take them on. Cyber Daily editor Liam Garman sits down with Vanta solutions engineering manager Jefferson Haw and Novera founder and managing partner Tony Vizza to discuss AI’s role in increasing cyber threats.

ChatGPT is the ultimate phishing tool, so why aren't companies boosting security budgets?

A report by Vanta that surveyed over 2,500 customers across the US, Europe, the Middle East, and Africa (EMEA), and Australia found that while threat actors are more easily crafting cyber threats, company budgets aren’t keeping up.

Solutions engineering manager for Vanta, Jefferson Haw, told Cyber Daily that cyber criminals are using AI chatbots like ChatGPT to generate threats.

You’re out of free articles for this month

To continue reading the rest of this article, please log in.

“Anyone could actually use ChatGPT to write up a phishing kit, or they can actually go to GitHub and download a phishing kit,” he said during Cyber Daily’s “The State of Trust: Navigating the future of compliance and securitywebcast.

Haw adds that these methods have “actually accelerated those attacks through the use of AI”, to the point where what once took weeks, now takes days.

This rise has had very real results, with Haw adding that the risk increase has been dramatic in just the last year.

“The risk has elevated from 55 per cent last year to 72 per cent. That’s a dramatic increase, right? And the biggest challenge or threat I’m seeing is that in a week, organisations will be experiencing 56 per cent of a threat happening. It’s like you’re going to have a threat attack at least once in a week. And if you span it across a month, the expectation is you’re getting a 76 per cent chance of being attacked,” he said.

Backing this up is that Vanta’s report found 72 per cent of security decision-makers in the survey say risk has never been higher.

However, company budgets aren’t keeping up with the increased threat.

Tony Vizza, founder and managing partner of Novera, said companies are often balancing budgets on other priorities.

“Cyber’s not the only risk they’re dealing with. So often they’re needing to balance where they spend to mitigate an organisation’s risk,” he said.

“And it could just so happen that in one particular year, cyber may not be the priority, or AI risk may not be the priority.”

Vizza added that there has been a shift towards solving the risk on a wider scale with government regulation, which companies need to ensure they comply with.

“There’s a lot of impetus from people generally who are sick of having their information divulged publicly and ending up on the dark web. So there is more of a call to action to actually solve this as a risk,” he said.

“We’re seeing that take place. There’s a lot of guidance that comes from bodies to say, look, you need to be doing more in your cyber. If not, we’re gonna start chasing you.

“So the answer I think would come down to ensuring that people who work in this space can communicate the benefit of what they’re doing to the board, so they understand that, look, you’re gonna spend this money, we’re asking for this money, but this is the outcome we are gonna get in terms of risk management and risk mitigation.”

Vizza highlighted that this is still a difficult conversation to have with boards, as they have an exact view of what cyber is and what tools they can get to fight threats.

“But if it’s explained in a way that shows to the business what we are doing, and the fact that it underpins every single business out there today, and the importance of that risk management, then they’re more likely to get that buy-in,” he said.

The other deterrent to growing budgets is the limitations businesses face in the current economic climate, meaning getting funding to fight cyber threats only becomes more difficult.

“A lot of organisations are doing it tougher. And we accept that. So it becomes incumbent on us to make a really compelling business case as to that extra spend,” Vizza said.

Cyber DailyWant to see more stories from trusted news sources?
Make Cyber Daily a preferred news source on Google.

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.