AI vs AI: How Attackers Use AI to Outpace Defenders

Written Tue, Jan 27, 2026 by

AI vs. AI: 30,000+ New Vulnerabilities Last Year: and How Attackers Use AI to Outpace Defenders

The Numbers Are Staggering, and They’re Accelerating

The cybersecurity landscape has entered uncharted territory. In 2024, the industry witnessed over 30,000 new vulnerabilities disclosed globally, a dramatic surge that has fundamentally altered defenders’ calculus (Skybox Security, Vulnerability and Threat Trends Report 2024). As of mid-2025, over 21,500 CVEs were disclosed in the first six months alone, with projections suggesting the full year may approach or exceed 50,000 disclosed vulnerabilities, translating to roughly 130+ new CVEs each day (CVE.org, 2025 Mid-Year Analysis).

Beyond the raw volume, the severity distribution warrants attention. Approximately 38% of reported CVEs in 2025 were rated High or Critical (CVSS score ≥7.0), representing an 18% increase from the same period in 2024. For security teams attempting to patch and mitigate flaws before attackers weaponize them, this volume explosion creates an operational challenge of unprecedented scale.

However, the vulnerability count itself is only half the story. The more pressing concern lies in how quickly these vulnerabilities are being exploited, and the role artificial intelligence now plays in accelerating that exploitation timeline.

A massive wave of data and vulnerabilities crashes toward a digital shield, symbolizing the surge of AI-driven cyber threats.

Why the Surge? A Perfect Storm of Complexity

Several converging factors explain this exponential growth in disclosed vulnerabilities:

Expanded attack surfaces: The proliferation of cloud services, IoT devices, remote work infrastructure, and interconnected operational technology (OT) systems has dramatically increased the number of potential entry points. Each new system, application, and integration introduces potential weaknesses.

Increased security research: Bug bounty programs, academic research, and commercial vulnerability scanning have matured significantly. More eyes on code means more discoveries, both by defenders and adversaries.

Software supply chain complexity: Modern applications rely on extensive third-party libraries and dependencies. A single vulnerability in a widely-used component (such as Log4j) can cascade across thousands of organizations simultaneously.

AI-assisted vulnerability discovery: Perhaps most critically, both researchers and threat actors now leverage AI tools to identify weaknesses faster than ever before. Research from arXiv demonstrates that LLM agents can autonomously exploit one-day vulnerabilities with minimal human intervention, fundamentally changing the economics of vulnerability research and exploitation (Fang et al., “LLM Agents can Autonomously Exploit One-day Vulnerabilities,” arXiv, 2024).

How Attackers Weaponize AI to Outpace Defenders

The asymmetry between attackers and defenders has always favored offense: attackers need to find one way in, while defenders must protect everything. Artificial intelligence has dramatically amplified this asymmetry. Some may even go so far as to say AI is giving attackers the upperhand.

Automated Vulnerability Scanning and Exploitation

According to the GreyNoise 2025 Mass Internet Exploitation Report, exploitation of vulnerabilities surged 34% as AI tools automate scanning and exploitation at scale. At least 161 CVEs were actively exploited in the first half of 2025, with attackers often weaponizing vulnerabilities within hours of public disclosure rather than the weeks or months that characterized previous eras.

Google’s Threat Intelligence Group (GTIG) documented how nation-state actors and sophisticated criminal organizations increasingly leverage AI tools to accelerate their operations. While current AI capabilities haven’t created entirely novel attack categories, they have significantly compressed the timeline from vulnerability disclosure to weaponized exploit (Google GTIG, “Threat Actors and AI: 2025 Analysis”). This significantly reduces the timeframe users have to remediate CVEs.

Enhanced Phishing and Social Engineering

The Verizon 2025 Data Breach Investigations Report highlights a disturbing trend: AI-generated phishing achieves a 54% click-through rate compared to just 12% for traditional phishing campaigns. This five-fold improvement in effectiveness stems from AI’s ability to craft contextually relevant, grammatically perfect, and highly personalized messages at scale.

Additionally, 68% of cyber threat analysts report that AI-generated phishing attempts are harder to detect than in any previous year. The telltale signs that once helped users identify suspicious emails – awkward phrasing, grammatical errors, and generic greetings – have largely disappeared.

Two artificial intelligence brains face off, highlighting the battle between AI-powered attackers and cyber defenders.

Credential Compromise at Scale

Password-based authentication faces an existential threat. Research indicates that 85.6% of common passwords can be cracked by AI in under 10 seconds, rendering traditional password policies increasingly inadequate. The Verizon DBIR documented a 703% increase in credential phishing attacks in the second half of 2024 alone.

Deepfake-Enabled Attacks

Perhaps most concerning for organizations with physical security considerations, deepfake incidents increased 680% year-over-year, with Q1 2025 recording 179 separate documented incidents. These attacks blur the line between cyber and physical security. Adeepfake video call can authorize fraudulent wire transfers, grant unauthorized facility access, or compromise executive decision-making.

This convergence underscores why Credo Cyber Consulting emphasizes a mission-driven approach to security that addresses both digital and physical vectors.

The Defender’s Dilemma: Speed, Scale, and Prioritization

With over 100 new vulnerabilities disclosed daily, perfect patch coverage is mathematically impossible for most organizations. The Verizon 2025 DBIR reveals that the median time to remediate critical vulnerabilities still exceeds 30 days in many sectors, a window that attackers exploit relentlessly.

The solution lies not in patching everything, but in intelligent prioritization based on mission impact. Not all vulnerabilities pose equal risk to your organization. A critical vulnerability in an internet-facing system that processes customer data demands immediate attention; the same severity rating in an isolated test environment may warrant scheduled maintenance.

A mission control desk displays a glowing holographic matrix prioritizing cyber assets for AI-driven vulnerability management.

The Mission-Driven Defense Framework: Prioritize, Patch, Monitor, Train

Effective defense against AI-accelerated threats requires a systematic approach that aligns security operations with the organizational mission. The following framework provides actionable guidance:

1. Prioritize Based on Mission Impact

  • Identify crown jewels: What systems, data, identities, and workflows are essential to your mission, and which would cause immediate operational degradation if disrupted? These typically include your critical services, sensitive data stores, and the control planes that administer your environment.
  • Map attack paths: Which vulnerabilities, misconfigurations, and exposed services provide plausible access to mission-critical assets? These pathways should be prioritized regardless of raw CVSS scores when mission impact is high.
  • Consider exploitability: Is active exploitation being observed in the wild, and is your organization exposed? Threat intelligence sources, including CISA’s Known Exploited Vulnerabilities (KEV) catalog, should be used to drive remediation urgency.

2. Patch with Velocity and Verification

  • Establish patch SLAs: Critical vulnerabilities in mission-critical systems should have 24-72 hour remediation targets. High-severity issues warrant 7-14 day windows.
  • Automate where possible: Leverage automated patch management for standard systems while maintaining manual oversight for sensitive infrastructure.
  • Verify remediation: Patching without verification is hope, not security. Confirm patches deployed successfully and didn’t introduce new issues.

3. Monitor for Exploitation Attempts

  • Deploy behavioral detection: Signature-based tools cannot keep pace with AI-generated attacks. Invest in behavioral analytics that identify anomalous patterns.
  • Monitor for lateral movement: Initial compromise is often just the beginning. Detection of east-west traffic anomalies can catch attackers before they reach the crown jewels.
  • Integrate threat intelligence: Subscribe to feeds that provide early warning of active exploitation campaigns targeting your technology stack.

4. Train for AI-Era Threats

  • Update awareness training: Traditional phishing training focused on obvious red flags is increasingly inadequate. Train staff to verify requests through out-of-band channels regardless of how legitimate communications appear.
  • Conduct realistic exercises: Tabletop exercises and red team engagements should incorporate AI-enhanced attack scenarios.
  • Build verification culture: Establish organizational norms that make it acceptable, even expected, to verify unusual requests, even from executives.

For additional guidance on building effective training programs, see our analysis: Does Cybersecurity Training Really Matter in 2026?

This Week’s Action Checklist

Organizations seeking immediate improvements should consider the following universal actions across most environments:

  1. Asset inventory (minimum viable visibility): Validate that an authoritative, up-to-date inventory exists for (a) endpoints and servers, (b) network appliances, (c) cloud assets and identities, (d) third-party/SaaS integrations, and (e) externally exposed services, because known exploited vulnerabilities (KEV) alignment and patch prioritization are materially degraded without accurate asset context.
  2. Patch prioritization (KEV + internet-facing first): Cross-reference current vulnerability findings against CISA KEV and prioritize remediation for (a) KEV-listed items, (b) internet-facing systems, (c) authentication/identity infrastructure, and (d) assets supporting your critical services, with timelines aligned to mission impact and exposure (CISA KEV catalog; Verizon, 2025 DBIR; GreyNoise, 2025 Mass Internet Exploitation Report).
  3. Compensating controls when patching is not immediately feasible: Where remediation windows cannot be met, implement documented, time-bound compensating controls such as virtual patching/Web Application Firewall (WAF) rules, network segmentation, removal of public exposure, application allowlisting, disabling vulnerable features, credential resets, and increased authentication assurance (e.g., phishing-resistant MFA), with explicit ownership and expiration dates.
  4. Monitoring for exploitation and abnormal behavior: Ensure alerting and triage coverage exists for (a) exploitation attempts against known vulnerable services, (b) new or anomalous administrative logins, (c) suspicious process execution, and (d) lateral movement indicators, because AI-enabled attacks may compress attacker dwell-time and reduce reliance on static signatures (GreyNoise, 2025 Mass Internet Exploitation Report; Google GTIG, “Threat Actors and AI: 2025 Analysis”).
  5. Backups and recovery validation: Confirm that backups for mission-critical systems and data are occurring, are isolated/immutable where possible, and have been successfully tested via restoration within the last 30–90 days, because untested backups frequently fail during real incident conditions.
  6. Incident communications readiness: Validate a current incident communications plan that includes internal escalation, legal/privacy coordination, executive decision points, stakeholder notification workflows, and an out-of-band verification process for urgent payment, access, and vendor-change requests to reduce susceptibility to deepfake- and impersonation-enabled fraud (Verizon, 2025 DBIR).
  7. Training against AI-enabled phishing and social engineering: Update security awareness and role-based training to emphasize verification behaviors (call-backs, known-good channels, and multi-person approvals for high-risk actions), and run short, realistic simulations focused on AI-generated phishing, impersonation, and urgency-based pretexting, given measured increases in phishing effectiveness and credential-driven intrusions (Verizon, 2025 DBIR).

The Path Forward: Humans and AI, Together

The “AI vs. AI” framing captures an essential truth: artificial intelligence has become a tool of both offense and defense. Organizations that fail to leverage AI-enhanced security tools will find themselves perpetually behind adversaries who have no such hesitation.

However, technology alone is insufficient. The most resilient organizations combine AI-enhanced detection and response capabilities with well-trained personnel, clear processes aligned to mission priorities, and leadership that understands security as a business enabler rather than a cost center.

The 30,000+ vulnerabilities disclosed last year were, and continue to be, challenging. But in lies an opportunity to reassess priorities, modernize defenses, and build security programs that can adapt at the speed of threat evolution.

Ready to assess your organization’s readiness for AI-enhanced threats? Credo Cyber Consulting partners with organizations across corporate, education, and government sectors to build mission-driven security programs that address both cyber and physical risk vectors.

Contact our team today to discuss your security posture and develop a prioritized roadmap for 2025 and beyond.

References

  • CVE.org, 2025 Mid-Year Vulnerability Analysis
  • Fang, R., et al., “LLM Agents can Autonomously Exploit One-day Vulnerabilities,” arXiv, 2024
  • Google Threat Intelligence Group (GTIG), “Threat Actors and AI: 2025 Analysis”
  • GreyNoise, 2025 Mass Internet Exploitation Report
  • Skybox Security, Vulnerability and Threat Trends Report 2024 (via BusinessWire)
  • Verizon, 2025 Data Breach Investigations Report (DBIR)