NewKerala.com

Cybersecurity Enters AI-vs-AI Era: Attackers and Defenders Deploy Autonomous Systems

Cybersecurity is entering an AI-versus-AI era as attackers and defenders increasingly deploy autonomous systems, according to a new World Economic Forum white paper. Attackers use AI to accelerate threat speed, scale, and sophistication, while organizations deploy AI-driven systems for real-time threat analysis and response. The report highlights IBM's ATOM system handling 95% of daily investigations and Google's AI agents patching over 100 critical security issues. However, the report warns that over-reliance on AI can undermine cyber resilience, emphasizing the continued need for human expertise.

Key Points: AI-vs-AI Era in Cybersecurity: Autonomous Systems Take Over

  • AI attackers increase speed and scale of threats
  • Defenders deploy autonomous AI systems like IBM's ATOM
  • Google's AI agents patch over 100 critical issues
  • 77% of organizations use AI in cybersecurity
3 min read

Cybersecurity entering AI-vs-AI era as attackers, defenders deploy autonomous systems: WEF report

WEF report reveals cybersecurity is entering an AI-vs-AI era, with autonomous systems from IBM, Google, and Allianz defending against AI-driven attacks.

"Adversaries are increasingly operating at machine speed, using AI to conduct reconnaissance of targets and vulnerabilities - WEF report"

New Delhi, May 9

Cybersecurity is entering an "AI versus AI" era, with companies increasingly deploying autonomous artificial intelligence systems to investigate, detect and respond to cyberattacks at machine speed as hackers themselves rapidly adopt AI-driven attack methods, according to a new World Economic Forum white paper released in collaboration with KPMG.

The report, titled "Empowering Defenders: AI for Cybersecurity", said attackers are increasingly using AI "to increase the speed, scale and sophistication of threats", forcing cybersecurity systems to evolve beyond traditional human-led defences.

"Adversaries are increasingly operating at machine speed, using AI to conduct reconnaissance of targets and vulnerabilities, generate malware, exploit code, evade detection and launch attacks at scale," the report said.

The WEF report noted that what earlier required "weeks of effort can now be executed in minutes", lowering technical barriers for cybercriminals and significantly increasing the scale of attacks.

To counter this shift, organizations are increasingly deploying AI-driven systems capable of autonomously analysing threats, investigating suspicious activity and recommending or triggering response actions in real time.

Highlighting real-world deployments, the report cited IBM's "ATOM" system, which autonomously investigates, enriches and scores cybersecurity alerts using agentic AI. According to the report, the system now handles "about 95 per cent of daily investigations" while automating more than "850 analyst hours per month".

The report also pointed to Allianz's "hypothesis-based AI analysis system", which dynamically retrieves and analyses forensic data during investigations instead of collecting all endpoint data centrally. The system was developed to address the growing challenge of analysing massive volumes of cybersecurity data generated across enterprise systems.

Meanwhile, Google has deployed AI agents such as "Big Sleep" and "CodeMender" to identify unknown software vulnerabilities and automatically generate security patches. The report said CodeMender has already patched "more than 100 critical security issues".

The report added that AI adoption in cybersecurity is accelerating rapidly across industries, with 77 per cent of organizations already using AI in cybersecurity functions.

According to the report, organizations extensively using AI in security operations reduced average breach costs by "USD 1.9 million" and shortened breach timelines by approximately "80 days".

The WEF report identified AI as "the most significant driver of change in cybersecurity", citing findings from its Global Cybersecurity Outlook 2026 survey, where 94 per cent of respondents highlighted AI's growing impact on cyber defence.

However, the report cautioned against excessive dependence on AI-driven systems, warning that "heavy reliance on AI can undermine cyber resilience".

"Excessive trust in automated decisions creates a false sense of security and over time erodes the expertise needed to intervene when systems fail," the report said.

The report stressed that while AI is becoming central to cybersecurity operations, "human judgement and expertise remains essential" to prevent systemic vulnerabilities and operational failures.

- ANI

Share this article:

Reader Comments

P
Priya S
Very insightful report from WEF and KPMG. The ₹1.9 million cost saving per breach is huge for Indian companies that are increasingly digital. However, I'm concerned about the cost of implementing these AI systems—SMBs in India might struggle to afford them. We need more affordable solutions tailored for our market.
M
Michael C
Great to see proactive measures like Google's CodeMender patching over 100 critical issues. But I worry about the arms race aspect—if both sides are using AI, it becomes a game of who has better algorithms and data. Human oversight is crucial, especially when dealing with sensitive data in sectors like banking and healthcare.
V
Vikram M
From a policy perspective, India needs to take this seriously. With our push for Digital India and UPI, we're becoming a bigger target. The report's point about technical barriers lowering is concerning—it means script kiddies can now do serious damage. We need stronger regulations and public-private partnerships on AI cybersecurity.
S
Sarah B
Interesting read. The 80-day reduction in breach timelines is impressive, but I wonder how these systems handle zero-day vulnerabilities that haven't been seen before. Also, 77% of organizations already using AI in cybersecurity—that seems high. I hope they're not just jumping on the bandwagon without proper testing.
A
Ananya R
The WEF report hits the nail on the head about human expertise being essential. We can't just let AI run everything without supervision—what if there's a false positive that shuts down critical infrastructure? In India, where we're rapidly digitizing everything from payments to health records, we need a balanced approach

We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.

Leave a Comment

Minimum 50 characters 0/50