AI Rush Is Reviving Old Cybersecurity Mistakes, Mandiant VP Warns

The current AI boom has accelerated adoption across enterprises, but the speed of implementation often outpaces security diligence. Organizations are eager to harness generative models for productivity, yet they frequently overlook timeless cyber‑hygiene practices such as encrypted channels, least‑privilege access, and continuous monitoring. This gap mirrors earlier eras when novel technologies—cloud, mobile, IoT—were introduced without robust safeguards, leading to a resurgence of familiar vulnerabilities now amplified by AI’s automation capabilities.

Mandiant’s red‑team engagements illustrate the concrete risks. Testers have observed AI‑driven workflows that silently reclassify sensitive files, allowing malicious actors to sidestep data loss prevention tools. In one case, an unencrypted stream between an AI service and a browser exposed financial data, highlighting how even high‑profile firms can miss simple safeguards. Moreover, once adversaries gain a foothold, the AI can execute follow‑on actions—exfiltrating data, altering policies, or propagating ransomware—without further human intervention, dramatically reducing detection windows.

The remedy lies in proactive governance rather than reactive cleanup. CISOs must embed themselves in AI project lifecycles, establishing clear policies for model usage, access controls, and audit trails. Regular red‑team or penetration testing of AI pipelines can validate that segmentation and encryption remain intact. By treating AI as a critical asset rather than a peripheral tool, enterprises can reap its benefits while mitigating the revived security failures that threaten both operational continuity and regulatory compliance.