A recent report published by Bugcrowd titled Inside the Mind of a Hacker 2024 reveals a significant increase in hackers’ confidence in utilizing AI technologies. The study, which gathered insights from 1300 ethical hackers and security researchers, indicates that 71% of respondents now believe that AI enhances the value of hacking, compared to only 21% in the previous year.
This sudden shift underscores the growing reliance on AI within the hacking community, both as a tool and as a potential risk. The use of generative AI tools among hackers has also seen a notable rise, with 77% of respondents reporting adoption, up from 64% in the previous year.
Despite the increasing use of AI, hackers still maintain confidence in their ability to outperform AI capabilities. Only 22% of respondents believe that AI surpasses human hackers, and just 30% think that AI can replicate human creativity. This suggests that while AI may enhance specific functions, human ingenuity remains crucial in identifying the most complex vulnerabilities.
Key findings from the report include the consensus among 93% of hackers that companies adopting AI have introduced new attack vectors, while 86% believe that AI has fundamentally changed their hacking strategies. Additionally, 82% of hackers express concerns that the AI threat landscape is evolving too rapidly for adequate security measures, but 73% remain confident in their ability to detect vulnerabilities in AI-powered applications.
SlashNext CEO Patrick Harr highlighted the increasing prevalence of AI-assisted attacks in Business Email Compromise (BEC), phishing, and social engineering. He anticipates that such attacks will become more widespread in Malware and Large Language Model (LLM) poisoning and model injection.
The report also sheds light on the evolving landscape of cybersecurity careers, with hacking emerging as a viable career path, especially for younger individuals. A significant 88% of respondents were between the ages of 18 and 34, with many pursuing hacking as a full-time occupation. Most hackers reported acquiring their skills independently through online resources, self-study, or trial and error, rather than through formal education.
Pathlock CEO Piyush Pandey emphasized that as AI automation advances in cybersecurity, the roles of cybersecurity professionals will evolve, rather than becoming obsolete. Talented cybersecurity professionals with a growth mindset will become increasingly valuable as they offer practical insights to guide the internal deployment of AI.
Overall, the Inside the Mind of a Hacker 2024 report signifies a tangible shift in the hacking community’s reliance on AI technologies, while also highlighting the enduring significance of human ingenuity in identifying and mitigating cybersecurity threats. As the cybersecurity landscape continues to evolve, the role of skilled professionals remains essential in navigating the complex intersection of AI and cybersecurity.