{"id":199985,"date":"2026-03-27T11:00:00","date_gmt":"2026-03-27T15:00:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/27\/ai-vs-ai-the-future-of-cybersecurity-is-a-machine-only-battlefield\/"},"modified":"2026-03-28T08:15:30","modified_gmt":"2026-03-28T12:15:30","slug":"ai-vs-ai-the-future-of-cybersecurity-is-a-machine-only-battlefield","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/27\/ai-vs-ai-the-future-of-cybersecurity-is-a-machine-only-battlefield\/","title":{"rendered":"AI vs. AI: The Future of Cybersecurity Is a Machine-Only Battlefield"},"content":{"rendered":"

AI vs. AI: The Future of Cybersecurity Is a Machine-Only Battlefield<\/a><\/p>\n

https:\/\/www.pcmag.com\/news\/rsac-2026-ai-vs-ai-the-future-of-cybersecurity-is-a-machine-only-battlefield<\/a><\/p>\n

Publish Date: 2026-03-27 11:00:00<\/a><\/p>\n

Source Domain: www.pcmag.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points.
\n SAN FRANCISCO\u2014At the 2026 RSAC Conference, Mitch Ashley, vice president and practice lead at Futurum Group, and Alan Shimel, founder and CEO of Techstrong Group, explained how it is no longer possible for humans to secure sensitive systems on their own. They suggest that, despite AI\u2019s rapid growth and the current field of products with inadequate safeguards for privacy and security, the average security professional is moving toward an oversight role rather than hunting for vulnerabilities themselves.AI Innovation Is Outrunning Our Ability to Secure ItThe AI market is messy. Ambitious startups are launched daily, and new AI tech is cropping up before anyone can make sense of what\u2019s already out there. By the time a security solution is proposed for a popular AI model, it has been replaced or made obsolete by a shiny new development. A theme at this year\u2019s RSAC has been AI guardrails. As AI agents gain access to sensitive data and systems, experts at multiple panels have said that protections are needed to limit their access in terms of time, authority, and scope.\u00a0From simple oversights to novel prompt injection attacks, there\u2019s no telling what the next zero-day vulnerability will be, especially in the new agentic world that Ashley and Shimel say has already arrived. \u201cThe amount of code, the amount of validation requests coming through, will overwhelm the human in the loop. And I\u2019m telling you that we\u2019re moving to something we call human at the helm,\u201d Ashley noted.
\nThis notion places humans in an advisory role, providing structured guardrails for agentic AI systems. To put it simply, human security professionals will be responsible for sifting through the results of an AI\u2019s findings. However, the findings will be overwhelming. Shimel stressed this, stating that, \u201cAs humans, we move at hundreds of repetitions per minute. AI moves in the degree of thousands.\u201d Essentially, the human security professional will need to leverage other AI agents to secure active AI agents. The idea is convoluted enough to make your head spin, but Ashley and Shimel argued that it is an inevitable future that current systems are ill-prepared to handle.\u00a0The AI Security Loop: Machines Auditing MachinesHow can the veracity of an AI auditor be verified without building yet another AI to audit the auditor and so on? This method leaves room for issues to persist, and the reliability of these AI audit models remains to be determined.\u00a0
\n The amount of code, the amount of validation requests coming through, will overwhelm the human in the loop.
\n – Mitch Ashley, vice president and practice lead at Futurum Group<\/p>\n

\u201cWe don\u2019t have enough humans to do the whole job,\u201d Shimel said, taking a pragmatic approach to the problem of recursion. He and Ashley propose a multi-model approach. Agentic security will have to be layered, as one tool verifying another will inevitably miss things. Much like how a human-based security team has many layers of checks and balances, so, too, will agentic systems need to be layered to be self-regulating.\u00a0<\/p>\n

Get Our Best Stories!<\/p>\n

Stay Safe With the Latest Security News and Updates<\/p>\n

Sign up for our SecurityWatch newsletter for our most important privacy and security stories delivered right to your inbox.<\/p>\n

Sign up for our SecurityWatch newsletter for our most important privacy and security stories delivered right to your inbox.<\/p>\n

By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy
\n Policy.<\/p>\n

Thanks for signing up!
\n Your subscription has been confirmed. Keep an eye on your inbox!<\/p>\n

I spoke with Shimel after the presentation and asked whether he believed these self-regulating systems were imminent or more of a general idea. While he said that widespread adoption is still a way off, Shimel believes this technology is out there and being trialed. He acknowledged that “recursion is a complex issue and that it is a problem that will need to be addressed instead of avoided due to its inevitable nature. Some oil is going to be spilled on the road there,\u201d he continued, noting that adoption will come with its fair share of incidents.\u00a0Why AI Systems Are So Hard to SecureTraditional systems can be inspected. Take a VPN audit, for example. A third-party firm can review internal processes and evaluate privacy policies to ensure compliance. Traditional security audits don\u2019t work well for AI-based systems because the functions at the very core of the service are in what\u2019s called a \u201cblack box\u201d\u2014meaning you can see the data that has been input (a prompt) and the output (generation), but not the internal logic and processes that deliver the result.\u00a0<\/p>\n

Recommended by Our Editors<\/p>\n

Security must be built-in, not tacked on…isn\u2019t that the dream of any security professional?
\n – Alan Shimel, founder and CEO of Techstrong Group<\/p>\n

It\u2019s like asking a human why they made a certain decision. They can point toward the stimulus and the resulting action, but we can\u2019t look into our own minds when a decision is being made and see the exact path a thought took. Monitoring AI agents poses a similar problem, since we cannot trace every step back through the decision-making process to find a \u201cwhy.\u201d\u00a0Can AI Still Be Secured\u2014or Is It Too Late?Ashley and Shimel proposed that guardrails at a fundamental level are necessary to safeguard these systems, with Shimel stating that, \u201cSecurity must be built-in, not tacked on…isn\u2019t that the dream of any security professional?\u201d\u00a0The path forward to securing AI may be uncertain, but you can take substantial steps to secure your online presence now. A VPN can prevent third parties, such as your ISP, from collecting your data. An antivirus will prevent unauthorized apps and malware from compromising your system. You can also pair those two tools with a password manager to further secure your online accounts against data breaches.\u00a0<\/p>\n

About Our Expert<\/p>\n

Justyn Newman
\n Senior Writer, Security<\/p>\n

Experience<\/p>\n

My writing journey started in 2012 and has taken me through various niches, but my main focus has always been on tech. I contributed to several growing PC hardware and software sites, focusing on gaming, peripherals, and privacy.As the amount of information we put out on the internet has grown, so have the threats and the tools we use to combat them. With VPNs gaining traction in the late 2010s as a tool for the public instead of just an option for business security, I found myself reviewing countless options in this continuously changing landscape. This led to my role before PCMag over at WizCase, where I honed my knowledge of VPNs and privacy tools and eventually oversaw all of the content produced. I led a talented team of fellow writers and editors to evaluate VPNs, password managers, antivirus, and parental controls. <\/p>\n

Read Full Bio<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

AI vs. AI: The Future of Cybersecurity Is a Machine-Only Battlefield https:\/\/www.pcmag.com\/news\/rsac-2026-ai-vs-ai-the-future-of-cybersecurity-is-a-machine-only-battlefield Publish Date: 2026-03-27…<\/p>\n","protected":false},"author":1,"featured_media":199986,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/i.pcmag.com\/imagery\/articles\/06oWY2C4XE75dIm5ZxBMR5x-1.fit_lim.size_1200x630.v1774554893.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,32,27],"class_list":["post-199985","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-malware","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/199985"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=199985"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/199985\/revisions"}],"predecessor-version":[{"id":199987,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/199985\/revisions\/199987"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/199986"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=199985"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=199985"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=199985"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}