Generative AI is reshaping the landscape of identity security, presenting both opportunities and challenges in the ongoing battle between cyber adversaries and defenders. Cybersecurity techniques such as vishing and deepfakes are experiencing significant growth rates, with CrowdStrike’s 2025 Threat Hunting report showcasing a 442% increase in vishing attacks over a six-month period in 2024. This shift in eCrime tactics is driven by AI-powered social engineering and deepfake tools, allowing threat actors to circumvent Multi-Factor Authentication (MFA) and exploit credentials on a large scale. As machine identities now surpass human users by a ratio of 45:1 in enterprises, and attackers can move laterally within seconds, traditional identity and access management systems are struggling to keep up with the evolving cyber threat landscape.
Logging In, Not Breaking In: The Rise of Malware-Free Intrusions
Generative AI is transforming the landscape of identity security, ushering in a new era of opportunities and challenges as cyber adversaries and defenders engage in a high-stakes battle to outmaneuver each other in the realm of AI. Techniques such as vishing and deepfakes are experiencing exponential growth rates in the realm of cybersecurity, with CrowdStrike’s 2025 Threat Hunting report revealing a staggering 442% surge in vishing attacks from the first to the second half of 2024. This evolution in eCrime tactics is fueled by AI-driven social engineering and deepfake tools, enabling adversaries to bypass Multi-Factor Authentication (MFA) and exploit credentials at scale. With machine identities outnumbering human users by 45:1 in the average enterprise, and attackers able to move laterally in just 51 seconds, traditional identity and access management systems are struggling to keep pace with the rapid advancements in AI-driven cyber threats.
Leave a comment