Cloud 101CircleEventsBlog
Submit a Peer Review for the AI Controls Matrix—a groundbreaking framework to address AI risks and strengthen security.

AI-Generated Attacks Are Here. Zero Trust Is How We Fight Back.

Published 01/16/2025

AI-Generated Attacks Are Here. Zero Trust Is How We Fight Back.

Originally published by Illumio on December 9, 2024.

Written by Raghu Nandakumara, Head of Industry Solutions, Illumio.


Last month, I attended the Illumio World Tour stops in New York City and Sydney as well as Black Hat MEA. One topic dominated conversations: generative AI (GenAI) and its growing use in cyberattacks. Cybercriminals are using AI technology to quickly create and deploy attacks that are smarter, faster, and more convincing than ever before.

One recent GenAI powered attack illustrates the stakes. Threat actors used deepfake technology to impersonate a CEO’s voice in a phone call. With a cloned voice that sounded authentic and urgent, the attackers tricked an employee into transferring $243,000 to a fraudulent account.

This wasn’t just a clever ruse. It was a calculated exploitation of trust and technology. The heist was pulled off without a single firewall being breached. And it succeeded because the target trusted what they heard — a trust the attackers skillfully manipulated using AI.

These incidents aren’t isolated. They are a sign of the times, and they demand a new cybersecurity mindset.


Legacy security approaches are failing against GenAI-fueled attackers

Traditional security approaches that focus on perimeter defenses, static firewalls, and reactive responses are buckling under the pressure of today’s AI-driven attacks.

These tools were never designed to handle adversaries that can learn, adapt, and scale faster than humans (and the legacy tech they use) can respond. Attackers now leverage AI to scan networks, exploit vulnerabilities, and even craft hyper-personalized phishing campaigns in real time.

The number of AI-driven attacks is only increasing. In fact, Microsoft reported earlier this year that they’ve already stopped several AI attacks by U.S. adversaries, including Iran, North Korea, Russia, and China.

Expecting that your organization won’t get hit with an attack that uses GenAI isn’t just risky — it’s reckless. Not because GenAI has completely changed the threat landscape. But because it shows your organization isn’t assuming breaches will happen and preparing accordingly.

As a recent IBM Think article said, “AI hasn’t fundamentally changed the cybersecurity battleground. Instead, it has helped attackers streamline things they were already doing. That means the best line of defense against AI-powered attacks is for organizations to stick with the fundamentals.”

Where to start with fundamentals? Zero Trust.


Zero Trust: Defend against GenAI threats...and whatever comes next

Zero Trust isn’t a product or a one-and-done solution. It’s a fundamental shift in how organizations think about and approach security.

The core idea is simple. Stop assuming trust, even within your own network. Every user, device, workload, and connection should never be trusted by default. Each resource earns the level of access it needs based on context and signals associated with it at any given time.

This lets Zero Trust transcend whatever happens in technology or the threat landscape. It’s a fundamental approach to better cybersecurity now and the next thing cybercriminals throw at us in the future.

These three principles form the backbone of a Zero Trust strategy:

  • Assume breach: A Zero Trust mentality expects that attackers are already in the network or will be eventually. Zero Trust focuses on restricting lateral movement within the network, reducing how far breaches can spread and gain access to critical assets.
  • Build least-privilege access: Limit users, systems, and workloads to only the minimum access required to perform their specific tasks. This helps reduce the potential damage from insider threats or compromised credentials by restricting unauthorized access to sensitive resources.
  • Segment networks: Zero Trust says that networks should be segmented by default. It’s the foundation of a Zero Trust strategy. Segmentation stops attackers from getting a foothold in your system, moving wherever they like, and stealing data or disrupting operations.

Zero Trust turns the tables on attackers, making every move they take harder, slower, and less effective. It transforms your security from reactive to resilient.


How to stay ahead of AI-driven attacks with Zero Trust

Building a Zero Trust architecture prepares your organization to handle the unpredictability of the next threat. Here’s how to operationalize it:

  • Map and segment your network: Get granular visibility into your network. Know what’s communicating with what and where. With this information, isolate critical data, systems, and applications. If attackers get in, they can’t move freely or halt your operations.
  • Automate security: Automated systems can scale and evolve in real time. Get security where you need it instantly — faster than people can do it manually.
  • Adopt a culture of Zero Trust: Zero Trust isn’t just about technology. It should be part of a company-wide mindset shift. Every department, every employee, and every process must align with a security-first philosophy.


Zero Trust is the only way to stay ahead of AI-powered threats

AI-driven attacks are reshaping cybersecurity. And the stakes have never been higher.

Organizations that stick to traditional defenses will find themselves outmatched and outpaced. The Zero Trust model is a blueprint for resilience in the face of these new threats. It’s proactive, scalable, and, most importantly, adaptable to whatever kinds of threats come next.



About the Author

author headshotRaghu Nandakumara is Head of Industry Solutions at Illumio, the Zero Trust Segmentation company. Based in London, UK, Raghu is responsible for helping customers and prospects across a variety of industries build resilience and accelerate Zero Trust outcomes with Zero Trust Segmentation. Previously, Raghu spent 15 years at Citibank, where he held a number of network security operations and engineering roles. Most recently, he served as a Senior Vice President, where he was responsible for defining strategy, engineering, and delivery of solutions to secure Citi’s private, public, and hybrid cloud environments. Raghu holds an undergraduate degree in mathematics and computer science from the University of Cambridge, and a master’s degree in advanced computing from Imperial College London.

Share this content on your favorite social network today!