AI Security - RSAC 2026 Highlights Evolving Threat Landscape
Basically, AI is changing how we protect against cyber threats.
At RSAC 2026, AI's impact on cybersecurity was front and center. Experts discussed how AI is reshaping both defenses and attacks. The future demands proactive measures to stay secure.
What Happened
RSAC 2026 kicked off this week in San Francisco, marking its 35th anniversary with over 43,000 attendees. The central theme of the conference was the community, but the underlying message was clear: artificial intelligence (AI) is reshaping the cybersecurity landscape. Keynote speakers emphasized that security teams must evolve from passive observers to active participants in this new era. Hugh Thompson, the Executive Chairman of RSAC, highlighted the urgency of adapting to AI's integration into both offensive and defensive operations.
Vasu Jakkal from Microsoft warned that adversaries are already leveraging AI systems to conduct attacks with unprecedented speed and scale. Traditional security approaches, which rely on static policies, are no longer effective. Instead, a shift toward proactive security models is necessary, where systems continuously adapt and respond in real-time.
Who's Being Targeted
The rise of AI agents introduces a new layer of complexity in cybersecurity. With projections suggesting there could be 1.3 billion AI agents in operation by 2028, organizations must rethink their security strategies. These agents not only represent a new attack surface but also require governance akin to that of human users. The evolving landscape means that security teams must consider machine identities alongside traditional human identities.
Jeetu Patel from Cisco emphasized the need for organizations to manage these autonomous systems effectively. The concept of agentic security is emerging, focusing on systems that operate autonomously while maintaining a continuous feedback loop between detection and response.
Tactics & Techniques
As AI becomes more integrated into cybersecurity, the tactics employed by both defenders and attackers are evolving. Organizations must enhance their observability regarding identity behaviors across systems. This includes monitoring AI agents as active participants whose actions can be analyzed and governed. The integration of AI into security platforms allows for continuous learning and adaptation to evolving threats.
Moreover, the geopolitical implications of AI-driven cybersecurity were discussed, with H.E. Dr. Mohamed Al Kuwaiti outlining the UAE's ambitious strategy to create 1 billion AI agents for national defense. This initiative aims to foster collaboration and shared intelligence across organizations and potentially nations, enhancing global cybersecurity efforts.
Defensive Measures
To stay ahead in this rapidly changing environment, organizations must adopt a proactive stance. Embracing AI in cybersecurity is no longer optional; it is essential for survival. Security teams should focus on developing always-on, self-defending environments that leverage AI to anticipate and mitigate threats.
Practitioners who utilize AI tools are likely to outpace those who do not, as highlighted by SANS Institute CEO James Lyne. The future of cybersecurity will demand a blend of human expertise and AI capabilities, ensuring that defenses are robust and adaptable to the evolving threat landscape. Organizations must prioritize training and resources to harness AI effectively, ensuring they are not left behind in this critical shift.
SC Media