How AI Is Accelerating The Race Between Hackers And Corporate Security Teams
TL;DR
Corelight CEO Brian Dy explains how AI has compressed the vulnerability-to-exploit window from weeks to hours, forcing organizations to shift from perimeter defense to internal network visibility that can precisely trace attack paths and minimize the scope of breach disclosures.
🛡️ The Open-Source Foundation 3 insights
From Academic Tool to Global Standard
Corelight originated as a network analysis utility created by a postdoc at Lawrence Berkeley National Lab, growing over 15 years of National Science Foundation funding into a commercial platform serving 300,000 security professionals.
Elite Customer Profile
Approximately 70% of Corelight’s revenue comes from critical infrastructure, defense departments, and intelligence agencies across the Five Eyes and NATO allies, an unusual top-down market approach for a cybersecurity startup.
Dual-Path Adoption
Customer acquisition splits evenly between organizations already using the open-source Zeek project and 'zero to Zeek' enterprises that adopt the commercial solution after recognizing its use among elite defensive teams.
⚡ AI-Accelerated Threat Landscape 3 insights
Exploit Velocity Collapse
Generative AI has reduced the time between vulnerability disclosure and active exploitation from three weeks to three hours, with one customer enduring 23,000 attacks during a single 72-hour patching window.
Attacker Skill Democratization
AI tools enable less sophisticated threat actors to execute advanced techniques previously limited to nation-states, effectively sedimenting complex attack methods down to entry-level hackers.
The Human Vulnerability
Attackers leverage AI for sophisticated social engineering, including audio and video spoofing, and scrape LinkedIn to target new employees with smishing attacks within 30 days of their hiring announcement.
🔍 Detection and Response Strategy 3 insights
Visibility Inside the Egg
Corelight focuses on detecting anomalous activity after perimeter breaches occur—the 'yolk' rather than the 'shell'—identifying when attackers 'live off the land' using legitimate internal tools to remain stealthy.
Ransomware Negotiation Advantage
Precise attack path tracing allowed one customer to disprove a $10 million ransomware claim by proving attackers accessed only 10% of threatened data, providing board-level confidence to refuse payment.
Minimizing Disclosure Scope
Detailed forensic visibility enables organizations to meet SEC breach notification requirements with ground-truth data, potentially reducing disclosure from tens of thousands of affected individuals to thousands based on actual rather than assumed compromise.
Bottom Line
Organizations must supplement traditional perimeter defenses with AI-powered network detection that provides complete internal visibility, enabling security teams to trace precise attack paths and minimize both financial and reputational damage when breaches inevitably occur.
More from Forbes
View all
How sunday Became A Restaurant Fintech Unicorn By Killing The Paper Check
Christine de Wendel, co-founder of Sunday, details how the restaurant fintech company grew to process $5 billion annually by replacing paper checks with QR code payments, saving restaurants an average of 12 minutes per table turn while integrating with existing POS systems.
The Accidental F1 Racetrack: How A Real Estate Gamble Brought Formula One Back To America
Bobby Epstein, founding partner of Circuit of the Americas, explains how a 2005 residential land purchase accidentally became America's premier Formula 1 venue, generating $7 billion in economic impact by operating as a year-round entertainment 'theater' rather than just a racetrack.
How Ants Inspired This Founder To Build A Robotic Vacuum Cleaner
Rodney Brooks traces his journey from building circuits in an Australian garage to inventing the Roomba, explaining how observing ants in Thailand inspired behavior-based robotics that made affordable home robots possible, and details his current work automating warehouses through Robust AI.
1.8 Billion Views A Month: Inside Dhar Mann’s Massive Creator Studio
Dhar Mann reveals how he built a creator empire generating 1.8 billion monthly views by pivoting from failed entrepreneur to scripted content mogul, bridging traditional Hollywood production values with the agility of the creator economy.