Hacker And The Fed When AI Makes Hacking Easier Than Ever
10 snips
Mar 5, 2026 They unpack an AI-driven campaign that automated credential abuse to breach hundreds of Fortinet firewalls. They discuss how generative AI lowers the skill barrier for attackers and speeds automation. They explore cyber operations tied to geopolitical strikes and the messy causes of outages. They cover research showing LLMs can link pseudonymous accounts and worries about shrinking online privacy.
AI Snips
Chapters
Transcript
Episode notes
Op HBGary Email Exfiltration Was Handled By A Specialist
- Hector recounts Op HBGary where teammates filled capability gaps fast, like one person exfiltrating Google Workspace emails and building a searchable UI.
- That contributor's work resembled later WikiLeaks tools, showing rapid specialization inside loose coalitions.
AI Turns Script Kiddies Into Mass Campaigners
- AI lowers the skill barrier so low-tier actors can run large-scale campaigns like breaching 600 FortiGate firewalls in five weeks.
- The attacker used public generative AI to automate credential stuffing, targeting exposed management interfaces without exploiting CVEs.
Enforce MFA And Replace Default Credentials Immediately
- Do enforce basic hygiene like unique credentials and MFA on management interfaces to block credential stuffing and brute force.
- Hector highlights breaches occurred because expensive FortiGate devices were deployed with weak/default credentials and no MFA.