

























In our previous CISO Collective blog post, Supercharged Security: Security in the Time of Mythos, Fortinet highlighted that it has been using AI to augment our security analysis for many years, including malware analysis, AI-guided fuzzing, penetration testing, and code analysis.
More recently, however, Fortinet has been closely collaborating with several vendors to leverage multiple frontier models, including Anthropic’s Glasswing (Mythos) and OpenAI’s Daybreak (GPT 5.5 Cyber) projects. Fortinet is leveraging the best parts of each cyber model, together with on-premises models, as part of a robust security testing process. While AI has been part of our established security testing program, frontier cyber model innovations have supercharged our ability to analyze and test software at scale.
This shift is significant, but, it does not change our fundamental approach to product security and responsible innovation. We diligently balance our commitment to the security of our customers and our culture of innovation and responsible transparency. Safeguarding customers is our highest priority, and we share information regularly about our technology, people, and processes with that mission in mind.
Fortinet maintains a mature vulnerability management and disclosure program designed to identify, mitigate, and remediate issues quickly and responsibly. Products are built secure by design, secure by default, and with a defense-in-depth approach to limit the impact of any AI-accelerated attacks. Fortinet has a long-standing commitment to being a role model in ethical and responsible product development and vulnerability disclosure. See, for example, Fortinet’s well-established product security policy.
Fortinet continues its rigorous testing and validation of findings in third-party open source projects used within our products and our own code. This work continues in parallel to the additional Frontier model testing.
Fortinet began testing the frontier models by replicating the most likely exploitation pathways a threat actor would take. As a threat actor would not have access to source code, this adversary emulation testing is limited to firmware analysis, penetration testing, and red teaming.
We used our test harness to leverage a multi-agent strategy to achieve this goal:
Upon the review of Fortinet solutions, Fortinet did not find a significant number of exploitable vulnerabilities. Importantly, the results of this testing yielded valuable ancillary findings:
The firmware testing story is important. In the short term, the risk posed by a threat actor gaining access to the current models is relatively low, given the threat actor’s ability to discover new vulnerabilities. However, the advantage it gives in reverse-engineering known, fixed vulnerabilities is significant.
Cybersecurity professionals know that it is only a matter of time before the models improve and these capabilities become available in open-source versions, and Fortinet expects the landscape to change very quickly once that happens. We will come back to this point later in the recommendations section.
We expanded the test harness’s use to analyze source code, resulting in more substantial findings. After conducting over 100 tests of 30 distinct product families, we are currently assessing and actioning on the results, which, at the time of writing, stand at:
We have made extensive use of penetration testing to triage frontier AI coding discoveries. But because we do not want to miss any true positives, Fortinet security analysts and security champions manually review every finding as the “human in the loop” to validate it before accepting a false positive classification. This step is crucial so that we do not overlook security best practices—issues that are not exploitable due to defense-in-depth measures or other mitigations. These are all useful and improve security, and will be addressed accordingly.
Frontier AI brings significant changes, but it does not change the fundamentals. We believe that the change brought about by frontier AI models presents defenders with a valuable opportunity to prepare. Over the coming weeks and months, Fortinet will address issues and develop and publish security enhancements based on our assessment of the severity and exploitability of any discovered vulnerabilities, as we would with any other vulnerabilities. And as part of our secure-by-design transparency commitment, we will reference the source of the vulnerability when sharing these solutions publicly.
Our next CISO Collective Forum will be on Wednesday, August 19, 2026, at 8 a.m. PST | 11 a.m. EST | 4 p.m. GMT. Register here.
Security engineering at organizations has historically been bottlenecked by their ready availability of human expertise. Frontier models help resolve that bottleneck. They can:
This improves the scalability of these skilled teams, supercharging their capabilities. This increase is good news, given that the Fortinet 2026 Global Cybersecurity Skills Gap Report revealed that cybersecurity hiring has stalled, with over half of IT leaders facing corporate pushback.
It is important to recognize that the often-cited expectation that AI will significantly reduce headcount is unlikely to materialize, even as frontier AI capabilities continue to advance. Organizations will still require skilled analysts to design effective prompts and develop meaningful test harnesses for optimal results. Substantial effort and resources remain necessary to interpret the outcomes, address issues, and validate fixes. While AI can dramatically improve efficiency and augment human capabilities, it is not a fully autonomous solution today, nor should critical processes rely entirely on automation.
My belief is that frontier AI models are unlikely to be transformative enough to replace the need for human security professionals. High-quality security professionals will remain essential for the foreseeable future. Rather, frontier AI models serve as “force multipliers” for existing security professionals:
Security knowledge becomes embedded in the organization’s development process, rather than siloed within a single team, enabling the collective of the company’s security professionals to operate more efficiently and move with greater momentum.
At the time of writing, the average token cost per true positive of all severities is standing around $540, representing a solid return on investment. This doesn’t even consider the benefits from the security best practices and threat modeling findings.
The frontier AI models are having a significant accelerating impact on cybersecurity, and given the success we have seen since we began integrating them together with local Fortinet models in our own AI foundry and into our SDLC permanently for continued testing, we expect Fortinet’s own solutions to improve over time, and the costs for this continued effort to reduce significantly.
A key finding in the FortiGuard Labs 2026 Global Threat Landscape Report, published prior to the launch of Mythos and GPT 5.5. Cyber, was that as AI accelerates reconnaissance, weaponization, and execution, and the finding that the time to exploit (TTE) had dropped to 24–48 hours for critical outbreaks, a sharp reduction from the 4.76-day TTE average in 2024. I mentioned earlier that a key takeaway from the firmware testing was how easy it was for the newer models to reverse-engineer the firmware and create proof of concepts for remediated vulnerabilities. With the advent of frontier AI models, we fully expect the TTE to continue the rapid trend towards zero.
To survive this new terrain, organizations need to evolve, and evolve quickly.
Given the speed we expect reverse-engineering attacks to occur, our primary defense mechanism must shift to a strategy of mitigating first and patching later. Mitigations start with the most secure deployment option, which we are encouraging by our secure-by-default strategy, a topic driven by CISA and to which Fortinet committed as one of the first cybersecurity company signatories to the corresponding pledge. Here are a few examples of best practice deployments for Fortinet devices, and the concept for other vendors is similar:
The above is critical, as actors with AI tools will soon be able to start to abuse vulnerabilities within hours of a vulnerability being published, so automation will be key, as every second matters to stay ahead of threat actors. The days of a quarterly change window are gone.
Velocity of mitigations is going to be key, and Fortinet continues to advocate the concept of virtual patching to remediate issues rapidly, using IP-based signatures to help organizations before they may have the opportunity to patch a vulnerability, before a fix is even available in some cases. If virtual patches are not available, clearly defined workarounds from your vendor will be key to the timely mitigation of potential threats.
Organizations also need to plan for this shift early in the process. This shift in approach needs to be built in right at the architectural design stage. A common obstacle to upgrading is the refrain: “I cannot take my business offline; it is tax season/Black Friday/Christmas, etc.” That mindset needs to change.
To incorporate this change in approach, for example, Fortinet offers solutions that simplify mitigation and remediation efforts and enable zero-impact upgrades via the FortiGate Session Life Support Protocol (FGSP). With this capability, you can synchronize sessions, withdraw a device from a cluster, and patch and reinsert it with zero packet loss or disruption to network traffic.
Security orchestration and response tools like FortiSOAR can be used to accelerate this patching process for all vendors’ automation playbooks to:
More details on protective actions can be found in our white paper, “The Cyber Implications of Frontier Cyber Models for Organizations and Customers.”
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。