Wiz chief technologist Ami Luttwak on how AI is transforming cyberattacks
3 minute readPublished: Sunday, September 28, 2025 at 2:00 pm
AI Fuels a New Era of Cyberattacks, Cybersecurity Experts Warn
The rapid integration of artificial intelligence (AI) into business operations is creating new vulnerabilities for cyberattacks, according to Ami Luttwak, chief technologist at cybersecurity firm Wiz. Speaking to TechCrunch, Luttwak highlighted how AI is expanding the attack surface as enterprises adopt AI-driven tools for tasks like code development and workflow automation.
Luttwak explained that AI's speed and efficiency often lead to security shortcuts, creating opportunities for attackers. He noted that attackers are now leveraging AI tools, including vibe coding and prompt-based techniques, to launch sophisticated exploits. These attacks can target AI tools used internally by companies, potentially leading to supply chain breaches.
One example cited was a recent breach of Drift, an AI chatbot provider, which exposed customer data. Attackers gained access to digital keys and used them to impersonate the chatbot, accessing sensitive data within customer environments. Another example was the s1ingularity attack on Nx, a build system for JavaScript developers, where attackers injected malware and hijacked AI developer tools to steal data.
Luttwak emphasized that while enterprise AI adoption is still relatively low, Wiz is already witnessing weekly attacks impacting thousands of customers. He stressed the need for the cybersecurity industry to adapt quickly to this evolving threat landscape. He also highlighted the importance of proactive security measures, especially for startups. He advises that startups should prioritize security and compliance from the outset, including having a Chief Information Security Officer (CISO) and considering enterprise security features from the start.
BNN's Perspective: The rise of AI in cyberattacks presents a significant challenge to businesses. While the potential benefits of AI are undeniable, companies must prioritize robust security measures and proactive risk management to protect themselves from increasingly sophisticated threats. This requires a shift in mindset, where security is integrated into every stage of development and operation, not just an afterthought.
Keywords: AI, cybersecurity, cyberattacks, Wiz, Ami Luttwak, vibe coding, supply chain attacks, security, startups, enterprise security, CISO, SOC2 compliance, AI tools, data security, cloud environments, threat landscape, security debt, authentication, developer tokens, malware, phishing protection, email security, endpoint protection, automation tools.