Close Menu
  • Home
  • News
  • Cyber Security
  • Internet of Things
  • Tips and Advice

Subscribe to Updates

Get the latest creative news from FooBar about art, design and business.

What's Hot

Iran-Linked MuddyWater Poses as Ransomware Gang to Mask Espionage

June 25, 2026

CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution

June 24, 2026

Researchers Trick AI Browsers Into Leaking Credentials

June 24, 2026
Facebook X (Twitter) Instagram
Thursday, June 25
Facebook X (Twitter) Instagram Pinterest Vimeo
Cyberwire Daily
  • Home
  • News
  • Cyber Security
  • Internet of Things
  • Tips and Advice
Cyberwire Daily
Home»News»AI Raises the Bar on Vulnerability Awareness and Secure-by-Design Soft
News

AI Raises the Bar on Vulnerability Awareness and Secure-by-Design Soft

Team-CWDBy Team-CWDMay 19, 2026No Comments3 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Share
Facebook Twitter LinkedIn Pinterest Email


With the advent of AI-powered vulnerability scanning tools, there is arguably no reason for technology firms to be unaware of bugs in their products, according to the European Union Agency for Cybersecurity’s (ENISA) chief cybersecurity officer.

“Now, there is no reason anymore for any company to say, ‘I didn’t know about our glitch or our vulnerability in our application’ because you can actually, right now, see it and fix it,” said Hans de Vries, chief cybersecurity and operational officer at ENISA, speaking during the ESET World conference on 19 May. 

AI-powered vulnerability scanning technology has advanced rapidly in 2026, highlighted by the launch of new frontier models like Claude Mythos and OpenAI’s GPT5.5-Cyber and that can identify and fix software bugs at unprecedented speed and scale.

De Vries noted that the EU’s Cyber Resilience Act (CRA) already demands cybersecurity by default and cybersecurity by design. The CRA entered into force in December 2024 and the main obligations introduced by the Act will apply from December 11, 2027, with reporting obligations to apply as of September 11, 2026. 

“For me, doing security by design and by default is actually the license to do business right now,” said de Vries. “If you haven’t done so, your adversary definitely will make a misuse of [vulnerable software], and you’ll probably be litigated because you should have seen the problem in the first place.”

“If you’re not using AI in a coherent manner, you probably won’t be successful in a year or two.”

Speaking during the same event, Paul Chichester, director of operations at the UK’s National Cyber Security Centre (NCSC), said we are entering a phase where poorly coded systems will have vulnerabilities found in them.

However, he commented that just one vulnerability doesn’t mean you’re automatically compromised.

“I think finding more vulnerabilities may harm some. For instance, if they are running shadow IT or don’t have that very sophisticated layered defense but looking ahead I think there’s going to be a time where the vendors are going to be really keen to use AI themselves to drive those vulnerabilities out of their products.”

AI, he said, will allow software products to be assured in a much more uniform way.

During ESET World in Berlin, the Slovakia-based cybersecurity firm announced a €40m investment to increase its research and development team and accelerate the development of cybersecurity-first foundational AI models, a layered AI stack and a new generation AI SOC.



Source

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleiOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android
Next Article OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation
Team-CWD
  • Website

Related Posts

News

CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution

June 24, 2026
News

Researchers Trick AI Browsers Into Leaking Credentials

June 24, 2026
News

Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting

June 24, 2026
Add A Comment
Leave A Reply Cancel Reply

Latest News

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

November 24, 202522 Views

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

September 7, 202517 Views

North Korean Hackers Target Crypto Firms with ClickFix and Zoom Lures

April 29, 202610 Views

Why SOC Burnout Can Be Avoided: Practical Steps

November 14, 20259 Views

Cyber M&A Roundup: Cyber Giants Strengthen AI Security Offerings

December 1, 20258 Views
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Most Popular

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

November 24, 202522 Views

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

September 7, 202517 Views

North Korean Hackers Target Crypto Firms with ClickFix and Zoom Lures

April 29, 202610 Views
Our Picks

How chatbots can help spread scams

October 14, 2025

The quest for greater tech independence

May 19, 2026

Here’s what you should know

February 6, 2026

Subscribe to Updates

Get the latest news from cyberwiredaily.com

Facebook X (Twitter) Instagram Pinterest
  • Home
  • Contact
  • Privacy Policy
  • Terms of Use
  • California Consumer Privacy Act (CCPA)
© 2026 All rights reserved.

Type above and press Enter to search. Press Esc to cancel.