Five Eyes: AI-Powered Cyberattacks Are “Months, Not Years” Away
The big picture: In a rare joint statement on Sunday, the Five Eyes intelligence alliance — the U.S., U.K., Canada, Australia, and New Zealand — issued an urgent warning that frontier AI models capable of “devastating” new forms of cyberattacks are mere months away. The statement landed the same week OpenAI launched its full GPT-5.5-Cyber model.
Why it matters for your business: The intelligence agencies aren’t talking about theoretical risks. GPT-5.5-Cyber scored 85.6% on the CyberGym benchmark and, in testing, generated eight Linux kernel exploits and 24 privilege escalation proofs-of-concept. Trail of Bits built a fuzzing lab in under a day — something that normally takes weeks. The barrier to sophisticated cyberattacks is collapsing.
The defensive side: OpenAI simultaneously launched “Patch the Planet” — a full-scale initiative with Trail of Bits and HackerOne to find and fix vulnerabilities across 30+ open-source projects. In its first week, the team uncovered hundreds of bugs. OpenAI is offering 6 months of free ChatGPT Pro and Codex Security to participating maintainers. The message is clear: the same AI that can break your systems can also help defend them — but only if you act now.
The bottom line: “Cyber risk is now a core business risk,” the Five Eyes statement reads. For business owners, this means AI-powered security scanning should move from “nice to have” to “this quarter.” The tools exist. The threats are accelerating. The gap between the two is measured in weeks, not years.
Sources: The Guardian · WIRED · AIToolsRecap
|