Krebs on Security

How AI Assistants are Moving the Security Goalposts

BrianKrebs · 2026-03-08 · Read original ↗

ATT&CK techniques detected

2 predictions

T1195.001Compromise Software Dependencies and Development Tools

75%

"##age workflow using a github action that runs a claude coding session when triggered by specific events. the workflow was configured so that any github user could trigger it by opening an issue, but it failed to properly check whether the information supplied in the title was po…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1588.002Tool

67%

", ” or build fairly complex applications and code projects just by telling it what they want to construct. probably the best known ( and most bizarre ) example is moltbook, where a developer told an ai agent running on openclaw to build him a reddit - like platform for ai agents.…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

Summary

AI-based assistants or "agents" -- autonomous programs that have access to the user's computer, files, online services and can automate virtually any task -- are growing in popularity with developers and IT workers. But as so many eyebrow-raising headlines over the past few weeks have shown, these powerful and assertive new tools are rapidly shifting the security priorities for organizations, while blurring the lines between data and code, trusted co-worker and insider threat, ninja hacker and novice code jockey.