Artificial intelligence (AI) is rapidly reshaping the cybersecurity landscape. According to the 2025 State of Cloud Security Report, AI adoption has increased substantially, with 84% of organizations now using AI in the cloud.
From automating defenses to increasing attacks, AI is both a powerful ally and adversary. For security teams, the challenge is not only to harness AI’s strengths but also to anticipate and defend against the new risks it introduces.
In this post, we examine the ways AI is helping and challenging our cybersecurity.
The good: AI as a force multiplier for defenders
When put to work by defenders, AI has the potential to dramatically strengthen cybersecurity by improving speed, accuracy, and efficiency.
Organizations that embrace AI-driven security aren’t just detecting threats faster; they’re also seeing tangible financial benefits. According to the 2025 Cost of a Data Breach Report, companies that extensively use AI for security save an average of $1.9 million USD per breach compared to those that don’t. This illustrates the growing business case for adopting AI security solutions responsibly and effectively.
Below are a few ways AI security is improving the performance of security teams.
1. Smarter threat detection
AI models can analyze massive amounts of telemetry in real time, identifying anomalies that would be difficult for human analysts to spot. This reduces dwell time and helps security teams detect threats earlier.
2. Automated response & containment
Machine learning-driven automation allows organizations to respond to incidents at increased speed. Instead of hours or days, compromised workloads or accounts can be isolated in seconds.
3. Better risk prioritization
AI can help security teams cut through the noise by correlating vulnerabilities, misconfigurations, and exposures into meaningful risk insights. This means teams can focus on what actually matters, instead of drowning in alerts.
The bad: AI in the hands of attackers
Unfortunately, the same capabilities that make AI powerful for defenders are also being exploited by cybercriminals to create more convincing attacks, advanced malware, and ambitious campaigns.
Here are a few ways AI is being leveraged for malicious aims.
1. AI-powered phishing & social engineering
Attackers are using generative AI to craft highly convincing phishing emails, text messages, and even deepfake audio/video. These attacks are more personalized and harder to detect.
This is especially troubling given that social engineering attacks have been a top three cause of data breaches over the last five years, according to the 2025 Data Breach Investigations Report. Phishing remains one of the most common and menacing forms of social engineering, and AI is making it even harder for victims to spot warning signs. Instead of poorly worded scams, people are now receiving highly polished, context-aware messages that can trick even seasoned professionals.
2. Malware that learns
AI is enabling adaptive malware that can change its signature, avoid detection, and exploit vulnerabilities faster than traditional defenses can adapt.
3. Scale and speed of attacks
With AI, adversaries can scan the internet for exposed assets, exploit known flaws, and execute campaigns at unprecedented scale. And that’s alarming considering the speed at which threat actors work without AI. To illustrate, previous studies by the Orca Research Pod found that it took just two minutes for attackers to discover and exploit leaked keys on GitHub.
Navigating the AI cybersecurity era
AI is neither inherently good nor bad; it’s a tool. The organizations that thrive will be those that use AI to strengthen their security posture while preparing for the new breed of AI-driven threats.
At Orca Security, we believe visibility and context are the foundations for staying secure in the AI era. By continuously scanning your cloud environment and prioritizing risks based on real-world context, we help ensure that AI is working for you, not against you.
The future of cybersecurity will be defined not just by how attackers use AI, but by how defenders leverage it more effectively.
Learn more
Stay tuned for more informative posts throughout Cybersecurity Awareness Month as we share more insights, practical guidance, and resources. You can also read our blog for our latest product announcements, in-depth research, thought leadership, and more.
