AI Security · · 4 min read

How Attackers Are Using AI Right Now

AI attacks deepfake fraud AI phishing

Attackers are using AI to generate undetectable phishing emails, clone executive voices for wire fraud, discover zero-day vulnerabilities at machine speed and automate credential stuffing at scale. The threat landscape has shifted from human-speed to machine-speed operations. Organizations that test annually are operating with a 364-day blind spot against adversaries that operate continuously.

The Threat Landscape Got Faster

Every advantage that cybersecurity defenders spent decades building is being eroded by AI in the hands of attackers. The grammatical errors that flagged phishing emails are gone. The weeks it took to develop an exploit are now hours. The manual effort required for credential stuffing is now fully automated and adaptive. This is not a future prediction. These attacks are happening right now and the evidence is already documented.

AI Phishing Campaigns

AI-generated phishing emails are indistinguishable from legitimate business communications. They match the tone, formatting and writing style of the person being impersonated. They reference real projects, real deadlines and real organizational context scraped from LinkedIn, press releases and public filings. Traditional phishing awareness training taught employees to look for grammar mistakes and generic greetings. Those signals no longer exist.

The scale is what makes this transformative. An attacker can generate thousands of unique, personalized spear phishing emails in minutes. Each email is different. Each references the specific target's role, company and recent activity. Pattern-based email filters that detect mass-sent identical phishing emails are useless against campaigns where every message is unique. The CISA threat advisory program has issued repeated warnings about AI-augmented phishing since 2024.

Deepfake CEO Fraud

Voice cloning requires three seconds of sample audio. An earnings call recording, a conference keynote or a podcast appearance provides more than enough material. Attackers clone executive voices and call finance departments to authorize wire transfers, change vendor payment details or extract sensitive financial data. The voice on the phone sounds exactly like the CEO because it is the CEO's voice being synthesized in real time.

Video deepfakes have moved beyond social media stunts into operational fraud. In the most documented case, a Hong Kong financial firm lost $25 million when employees joined a video conference where every participant except the victim was an AI deepfake. The CFO, the department heads and the project leads were all fabricated. The employees followed the wire transfer instructions because they saw and heard their leadership team giving them. Our AI content authentication service provides deepfake detection for organizations facing this threat.

Automated Vulnerability Discovery

Anthropic's Claude Mythos demonstrated that AI can autonomously discover zero-day vulnerabilities across major operating systems and browsers for under $50 per bug. It found a 27-year-old vulnerability in OpenBSD and 16-year-old flaws in FFmpeg. It generates working multi-stage exploit chains in hours, not weeks.

This capability is not limited to Anthropic. The underlying technique of using large language models for automated code analysis and vulnerability discovery is reproducible. Open-source models fine-tuned on vulnerability databases and exploit code are circulating in offensive security communities. The barrier to entry for finding critical vulnerabilities has collapsed. An attacker with basic prompt engineering skills and access to the right model can now discover bugs that would have required a decade of specialization six months ago.

AI Credential Stuffing

Traditional credential stuffing takes leaked username-password pairs from breached databases and tries them against other services. AI makes this attack smarter. Instead of brute-forcing exact credential matches, AI models predict password variations based on the leaked password. If a user's password from a 2023 breach was "Company2023!", the AI generates likely current passwords: "Company2024!", "Company2025!", "C0mpany2026!" and dozens of other statistically probable variations.

AI also defeats CAPTCHAs, solves multi-factor authentication challenges through social engineering phone calls using cloned voices and times login attempts to evade rate limiting. The entire credential attack chain from password generation to authentication bypass operates autonomously.

The Only Counter Is Speed

When attacks operate at machine speed, defenses must operate at machine speed. Annual penetration tests are not sufficient against adversaries who probe your attack surface continuously. Monthly vulnerability scans do not catch zero-days that get weaponized in hours. Security awareness training built for 2020-era phishing does not prepare employees for 2026-era AI-generated attacks.

The organizations that survive this shift are the ones that test continuously, patch aggressively and assume their current defenses are insufficient. If you have not had a security assessment in the last six months, your threat model is outdated. The attackers have upgraded their tools. It is time to upgrade your defenses.