
Retaining defensive advantage in the age of frontier AI cyber capabilities
As AI accelerates vulnerability discovery, organisations must raise their security baselines to safeguard their cyber security.
Organisations need to be ready to counter the enhanced capabilities of AI-powered attacks.
Artificial intelligence (AI) is no longer a distant or speculative issue for cyber security.
The most advanced tools, often referred to as frontier AI, already make it easier, faster and cheaper for attackers to discover and exploit weaknesses. This means that tasks which once required specialist skills – such as writing exploit code, understanding system architecture or using attack tools – can increasingly be automated using AI. This lowers the barrier to entry for sophisticated cyber attacks and allows attackers to operate at greater speed and scale.
For organisations, this means that weaknesses in basic cyber security practices are more likely to be discovered and exploited.
Responding to this means 2 things:
Organisations that act now to improve their cyber security fundamentals will be in a much better position to meet the challenges AI can bring.
Agentic AI is a new class of frontier AI which is beginning to appear in organisations.
Agentic AI tools don’t just generate content or predictions; they can plan tasks, make decisions and take actions on a user’s behalf.
Agentic AI is likely to offer significant benefits to organisations in many scenarios, particularly where tasks are repetitive, well-understood and low risk. This is what makes them useful, but also means they can introduce new security risks if they are poorly governed or misused.
As agentic AI tools become more widely deployed, organisations will need clear oversight of how they are used and what access they have to systems and data.

AI is not only benefiting attackers, but can also significantly improve and accelerate cyber defence.
Technology providers are increasingly using AI to identify and fix vulnerabilities in their products and services throughout their lifecycles, keeping customers and users safe from new threats. Organisations that adopt AI securely, while maintaining strong cyber security fundamentals, will be better placed to take advantage of these defensive capabilities. In doing so, organisations will be demonstrating to customers, prospects and suppliers that cyber security is taken seriously at the highest level, and that they’re ready to face future challenges with confidence.
Frontier AI tools lower the barrier to entry for sophisticated attacks, and are already being used to identify vulnerabilities at scale.
Put simply, AI is making it easier and faster for criminals to attack those organisations that do not have basic cyber security protections in place.
AI does not change the fundamentals of cyber security, but it raises the stakes when those fundamentals are missing.
The NCSC believes that AI will change the game for both offensive and defensive cyber security capabilities.
Maintaining strong cyber security fundamentals remains the most effective way to protect your organisation from digital threats, whether those are AI-assisted or not.
Organisations that act now by managing cyber security as a leadership priority, and adopting AI carefully and securely, will be best placed to benefit from the opportunities AI offers while remaining resilient to evolving threats.

The NCSC publishes accessible content to help you make sense of the fast-moving world of AI.

As AI accelerates vulnerability discovery, organisations must raise their security baselines to safeguard their cyber security.

When it comes to using agentic AI, make sure you can walk before you run.

Using Artificial Intelligence to find vulnerabilities can bring added security considerations.

An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027.
The following resources have been created by the NCSC for security professionals and the wider technical community.

Different code deserves different levels of oversight, so calibrate your approach to ‘vibe coding’ accordingly.

Organisations must act now to prepare for a wave of patches that will address decades of technical debt.

Understanding the threats and staying ahead of the adversary

If ‘vibe coding’ disrupts the software market like SaaS did 20 years ago, what does this mean for cyber security?

Introducing a common language to improve awareness, threat modelling, and collaboration on AI security

There are crucial differences between prompt and SQL injection which – if not considered – can undermine mitigations.
The NCSC has worked with a number of world-class institutions committed to advancing secure AI development. A selection of key publications is provided below.
Agencies from 18 countries, including the US, endorse new UK-developed guidelines on AI cyber security.
Joint guidance, co-authored by the NCSC with international partners, that explores security challenges and risks posed by agentic AI.
Technical report published by the European Telecommunications Standards Institute (ETSI).
Securing Artificial Intelligence (SAI); Guide to Cyber Security for AI Models and Systems
Content Credentials’ guidance, co-authored with the NSA, seeks to counter the erosion of trust.
Content Credentials: Strengthening Multimedia Integrity in the Generative AI Era
A call to action from the Five Eyes security agencies. The evolving landscape of artificial intelligence (AI) is rapidly transforming cyber risk, and we must act swiftly to remain ahead.