In a nutshell: AI models measurably accelerate cyberattacks while IT defense teams increasingly fall behind with conventional response cycles.
The German Federal Office for Information Security (BSI) documents that AI systems such as Claude are being used in the planning and execution of cyberattacks, thereby significantly reducing the response time of IT security teams. The threat requires a reassessment of defensive strategies and faster incident response processes.
The BSI has identified a growing number of cyberattacks in which large language models are being used as tools to automate and accelerate attack workflows. AI systems thereby significantly lower the technical entry barrier for attackers: reconnaissance, payload generation and social engineering preparations occur faster, while adaptations to detected security measures can be made in real time.
For IT administrators and security teams, the situation is becoming considerably more severe. The conventional response time – detection, analysis, remediation – is being undermined by AI-driven attack speed. Where attackers previously needed hours or days to adapt an exploit or scale a phishing campaign, AI models can complete these tasks in minutes. The BSI therefore explicitly warns of an asymmetry between attack capacity and defensive capacity.
The BSI recommends a dual-track strategy: First, accelerating detection and response processes through automation (SIEM, SOAR) to shorten response time windows. Second, raising baseline hygiene – regular patching cycles, multi-factor authentication, network segmentation – to reduce the overall attack window. Third, organizations should strengthen their threat intelligence processes in order to detect AI-powered attack patterns earlier.
Source: www.golem.de · Published 23 June 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.1.