The AI threat to cybersecurity isn’t (so much) people accepting vulnerable AI code, it’s AI finding the vulnerabilities in widespread legacy code.
As for “lowering the bar” - we’ve had skript kiddiez since forever, the availability of AI to skript kkiddiez just raises the bar for finding and fixing zero days by the White Hats before the Black Hats find and exploit them.
White Hats can just set a script kiddiez AI to the task of jiggling doorknobs and seeing what happens. The blade cuts both ways. In the long run, I think automated defense testing will make cybersecurity much better.
The AI threat to cybersecurity isn’t (so much) people accepting vulnerable AI code, it’s AI finding the vulnerabilities in widespread legacy code.
As for “lowering the bar” - we’ve had skript kiddiez since forever, the availability of AI to skript kkiddiez just raises the bar for finding and fixing zero days by the White Hats before the Black Hats find and exploit them.
White Hats can just set a script kiddiez AI to the task of jiggling doorknobs and seeing what happens. The blade cuts both ways. In the long run, I think automated defense testing will make cybersecurity much better.
That’s called professional pen testing. And, I agree, I do believe that it is actually possible to close all the gaps.