AI-driven cyberattacks will start to be the ‘new norm’ in months, Palo Alto warns

Palo Alto Networks tech chief Lee Klarich said companies are losing time to step up software defenses as hackers increasingly exploit vulnerabilities with the help of artificial intelligence models.

“We now estimate a narrow three-to-five-month window for organizations to outpace the adversary before AI-driven exploits start to become the new norm,” he wrote in a blog post on Wednesday. “This impending vulnerability deluge demands urgency.”

The rise of increasingly sophisticated AI models such as Anthropic’s Mythos has raised the stakes, putting pressure on cybersecurity teams to step up their defenses as they brace for a wave of cyberattacks capable of exploiting previously unknown software vulnerabilities. The concerns led to White House meetings with bank leaders and technology giants.

Google this week said it stopped an attempt to use AI for a “mass exploitation event,” but hackers are already using available AI tools to exploit software vulnerabilities.

Klarich agreed that these features won’t be limited to newer models and called for an industry-wide innovation to hunt down new attack techniques, including virtual patching capabilities. He said Palo will roll out the first set of capabilities “very soon.”

Last month, Anthropic limited the rollout of the Mythos to a select group of companies to test and fix vulnerabilities before hackers abuse them. The group included Palo Alto Networks, CrowdStrike, Amazon, Apple and JPMorgan.

OpenAI announced its GPT-5.5-Cyber model last week and followed that with the rollout of its Daybreak cyber initiative.

“The big question just a few weeks ago was: ‘Are we overstating the model capabilities?’ With more testing, I can confidently say we weren’t,” Klarich wrote. “In fact, these models are likely even better at finding vulnerabilities than we initially realized.”