Can we defend against ai-powered attackers?
In this week's Intel Chat, Chris Luft and Matt Bromiley discuss how the same AI capabilities fueling adversaries are available to defenders too.
Matt's takeaway: you don't need to buy an AI product to keep pace. The same way an attacker points AI at a code base, defenders can point it at detection rules and telemetry.
Chris adds that as more developers use these models to check their own code, the playing field will level out, though the next year or two will likely bring a spike in exploits from lower-skilled attackers leveraging AI before defenses catch up.
The episode also covers:
- US export controls on Anthropic's Claude Mythos 5, and the security community debate over whether the move weakens defenders more than attackers
- A ServiceNow API flaw that exposed customer instance data
- A credential harvesting campaign that compromised 30,000-plus Fortinet devices across 194 countries Ukraine's new access to the EU's cyber security reserve