AI revolutionises cyber threats, warns Wiz CTO

Cybersecurity executives are raising alarms about the impact of artificial intelligence on cyber threats. AI is fundamentally changing the threat landscape, with attackers using AI tools to execute sophisticated, automated attacks more rapidly than ever.Ami Luttwak, chief technologist at cybersecurity firm Wiz, explains the emergence of a “mind game” in which attackers leverage the same AI tools as enterprises. These attackers utilize prompts to instruct AI systems to extract sensitive information or disrupt operations.

Real-world incidents illustrate these threats. In August 2025, attackers targeted Drift, an AI chatbot firm, by compromising OAuth tokens to access Salesforce data from numerous companies such as Cloudflare and Google. The attack employed “vibe coding,” an AI-assisted method allowing developers to describe functionality in natural language.

Despite the limited integration of AI in enterprises—estimated at only 1%—Wiz reports thousands of companies impacted by AI-driven attacks weekly. The s1ngularity attack in August exemplified this threat, as harmful code in the Nx JavaScript build system targeted AI tools, harvesting sensitive credentials.

Research by Veracode reveals significant vulnerabilities, finding that 45% of AI-generated code contains security flaws. Attackers exploit “vibe coding” to create functionality quickly, often sidestepping secure implementation.

Industry Response

Wiz, acquired by Google for $32 billion, has developed products like Wiz Code and Wiz Defend to counter AI-related attacks. The company achieved SOC2 compliance, demonstrating a security-first approach crucial for AI startups.

Luttwak warned that all security domains now face new AI-powered threats, necessitating a reevaluation of defensive strategies. With cybercrime costs projected to reach $10.5 trillion annually by 2025, the cybersecurity industry confronts unmatched challenges as attackers and defenders race to adapt to AI’s transformative impact.