AI bites back

Written By David Mulvey

Artificial intelligence is transforming productivity, software development, research, and automation at an extraordinary pace. But alongside those benefits comes a rapidly growing cybersecurity challenge that many organisations are still underestimating.

The release of increasingly sophisticated AI models - including Anthropic’s Mythos and OpenAI’s GPT-5.5 - marks a significant shift in the threat landscape. These systems are becoming exceptionally capable at analysing code, understanding complex systems, identifying vulnerabilities, and assisting with exploit development.

For defenders, that means one thing: security awareness and response times need to improve dramatically.

The barrier to exploitation is falling

Historically, exploiting complex vulnerabilities required deep technical expertise, significant time, and specialist knowledge. Today, advanced AI models are lowering those barriers.

Modern frontier models can:

  • Analyse large codebases rapidly

  • Identify insecure patterns

  • Explain vulnerabilities

  • Generate proof-of-concept exploit code

  • Assist attackers in refining exploitation techniques

While AI is also helping defenders improve detection and automation, the reality is that offensive capability is accelerating just as quickly.

The result is a world where newly disclosed vulnerabilities can move from publication to active exploitation far faster than most organisations are prepared for.

‘CopyFail’ and ‘Dirty Frag’

Recent vulnerabilities affecting Linux systems demonstrate how serious this acceleration has become.

The ‘CopyFail’ (CVE-2026-31431) vulnerability exposed privilege escalation weaknesses affecting Linux systems at scale. Once details became public, exploit development and testing spread rapidly across the security community.

Soon afterwards came ‘Dirty Frag’ (CVE-2026-43284 / CVE-2026-43500) - another major Linux privilege escalation issue impacting virtually all major Linux distributions. Security researchers described it as particularly dangerous because of the reliability and accessibility of exploitation techniques.

In both cases, the critical issue was not just the vulnerability itself - it was the speed at which attackers could weaponise that information.

And that timeline continues to shrink.

Exploitation is happening faster than ever

A clear illustration of this trend can be seen at ZeroDayClock.com, which tracks the time between vulnerability disclosure and observed exploitation activity.

Vulnerabilities that once took weeks or months to become actively exploited are now often targeted within hours. Attackers are monitoring disclosures in real time, automating analysis, and rapidly deploying exploits against unpatched systems.

The numbers are alarming, and AI is accelerating that process.

As models become better at understanding software and generating technical output, the speed advantage increasingly shifts toward attackers who can automate reconnaissance, vulnerability analysis, and exploit refinement at scale.

Awareness

This is why organisations need to significantly increase cybersecurity awareness across both technical and leadership teams.

Security can no longer be viewed purely as an IT responsibility or a compliance exercise. In an AI-accelerated threat environment:

  • Delayed patching creates immediate risk

  • Outdated systems become critical liabilities

  • Slow decision-making dramatically increases exposure

Awareness now means understanding:

  • How quickly vulnerabilities are weaponised

  • How AI changes attacker capability

  • Why rapid response is becoming essential

The security landscape has changed

The emergence of advanced models like Mythos and GPT-5.5 represents more than just another step forward in AI capability. It changes the economics of cyber attacks.

Tasks that previously required highly skilled specialists can increasingly be assisted - or accelerated - by AI systems capable of analysing software and generating sophisticated technical outputs in seconds. So we must adapt.

Faster patching. Better visibility. Stronger monitoring. Greater awareness.

Because in the age of frontier AI, the time between vulnerability disclosure and exploitation is collapsing.

David Mulvey
Next

Engage 2026