Interview “In my past life, it would take us 360 days to develop an amazing zero day,” Zafran Security CEO Sanaz Yashar said.<\/p>\n
She’s talking about the 15 years she spent working as a spy – she prefers “hacking architect” – inside the Israel Defense Forces’ elite cyber group, Unit 8200.\u00a0<\/p>\n
“Now, the volume and speed is changing so much that for the first time ever, we have a negative time-to-exploit, meaning it takes less than a day to see vulnerabilities being exploited, being weaponized before they were patched,” Yashar told The Register. “That is not something you used to see.”<\/p>\n
The reason: AI. This technology isn’t helping criminals develop novel or more sophisticated attack chains entirely without humans in the loop, she said. “But AI is helping the threat actors do more, and faster,” according to Yashar – and the more and faster is what worries her.<\/p>\n
As a teen, Yashar’s family moved from Tehran to Israel, and the Israeli military intelligence corps recruited her while she was working as a research assistant at Tel Aviv University.\u00a0<\/p>\n
In 2022, Yashar co-founded Zafran, which uses AI to help companies map and manage their cyber-threat exposure. But before heading up her own security startup, she led threat intelligence at Cybereason and worked as a manager at Google’s incident response and threat intel biz, Mandiant.<\/p>\n
\nAI is helping the threat actors do more, and faster<\/p>\n<\/blockquote>\n
She’s citing Mandiant’s recent analysis<\/a> that found the average time-to-exploit (TTE) in 2024 hit -1. This is how Google and Mandiant define the average number of days it takes attackers to exploit a bug before or after the vendor issues a patch, and this is the first time ever the security analysts have seen a negative TTE.\u00a0Crims are getting to exploit bugs a day before they’re patched now.<\/p>\n
“And we saw 78 percent of the vulnerabilities being weaponized by LLMs and AI,” Yashar said.<\/p>\n
In addition to attackers using AI to improve the speed and efficiency of breaches, organizations’ increasing use of this same technology – in some cases, just stuffing AI into every product and process – expands the attack surface.\u00a0<\/p>\n
This includes attackers misusing corporate AI systems through things like prompt injection<\/a> and tricking AI agents into bypassing safety guardrails<\/a> to develop exploit chains<\/a>, or access data<\/a> they’re not supposed to.\u00a0<\/p>\n
Plus, there’s also software vulnerabilities within the AI systems and frameworks themselves, and Yashar worries about the “collateral damage” caused from exploiting these bugs, especially if they fall into the hands of “junior” hackers: the Scattered Spider<\/a>, ShinyHunters-type<\/a> cybercrime collectives<\/a> or governments just beginning to develop or buy a cyber-weapons arsenal or experimenting with agentic AI.<\/p>\n
“Sometimes the ones that don’t understand what they are doing are more dangerous than Russia, Iran, Israel, US, China – they understand what can happen if something goes wrong,” she explained. “Even if they do bad things, there is a decision they understand.”<\/p>\n