Scoopfeeds — Intelligent news, curated.
Attackers scale deception with AI. Defenders need truth at machine speed.
ai

Attackers scale deception with AI. Defenders need truth at machine speed.

VentureBeat AI · Jun 15, 2026, 7:00 AM

Why this matters: a development in AI with implications for how people work, create, and decide.

Presented by Splunk AI has changed the economics of cyber deception.An attacker can now generate thousands of convincing phishing lures, fake identities, and tailored pretexts before a defender finishes a single change-control cycle. That is the new security challenge: deception got faster and cheaper, while verification did not.Much of the discussion around AI for defense centers on detection models. Detection matters, but it is not the only bottleneck. The deeper constraint is evidence: where data lives, whether it is available when needed, how quickly it can be correlated, how long it is retained, and whether analysts or agents can trust what they retrieve.Defense in the AI era is a data problem before it is a detection problem.The defender’s advantage is truthAttackers can afford to lie at enterprise scale. They can test endless combinations of messages, identities, domains, and attack paths, and most can fail at almost no cost.Defenders do not have that luxury. Their advantage is truth: quickly knowing what happened, where, when, which identity was involved, which assets were affected, what changed, and what business process may be at risk.That truth must be documented, governed, auditable, and defensible. Attackers are using AI to scale deception, impersonation, social engineering, and speed. Defenders need AI to scale verification.The goal is not just to act faster than the attacker. It is to take action that people and machines can trust.Fragmented data breaks modern defenseConsider a suspicious login from a contractor account. On its own, it is just another authentication anomaly. To know whether it matters, a security team may need identity history, endpoint activity, cloud access logs, ticketing records, asset ownership, configuration changes, network telemetry, and business context.If those records sit in different tools, expire at different times, or require multiple teams to retrieve, defenders are not investigating the incident. They are negotiating wi

Article preview — originally published by VentureBeat AI. Full story at the source.
Read full story on VentureBeat AI → More top stories

More in ai

TechCrunch AI
Is the US government’s Anthropic ban accidentally helping the brand?
TechCrunch AI
The US banned Anthropic’s Fable 5 release, but the numbers don’t seem to care
TechCrunch AI
Billionaire Ambani wants AI in every call, app, and home
Wired
The Most Promising Ebola Vaccine Has Been Sitting on the Shelf for 15 Years
TechCrunch AI
The CEO of Allbirds’ new AI biz has a plan, but no employees

Browse all ai coverage →

Aggregated and edited by the Scoop newsroom. We surface news from VentureBeat AI alongside other reporting so you can compare coverage in one place. Editorial policy · Corrections · About Scoop