AI can help defenders stop nation-state threat actors at machine speed | CyberScoop<\/title> <meta name=\"description\" content=\"AI is transforming cybersecurity defenses against Chinese threat actors. Learn why US organizations must leverage AI for faster detection and real-time response to evolving threats targeting cloud and IT infrastructure.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/cybersecurity-ai-chinese-threat-actors\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"AI can help defenders stop nation-state threat actors at machine speed\"> <meta property=\"og:description\" content=\"AI is transforming cybersecurity defenses against Chinese threat actors. Learn why US organizations must leverage AI for faster detection and real-time response to evolving threats targeting cloud and IT infrastructure.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/cybersecurity-ai-chinese-threat-actors\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cyberscoop\/\"> <meta property=\"article:published_time\" content=\"2025-04-23T10:00:00+00:00\"> <meta name=\"author\" content=\"Greg Otto\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg\"> <meta name=\"twitter:creator\" content=\"@gregotto\"> <meta name=\"twitter:site\" content=\"@CyberScoopNews\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1744740145g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress\/dist\/css\/related-posts-block-styles.min.css?m=1744312959g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1740691656g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=a815169637cf454b7376\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" title=\"JSON\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/84253\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.8\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=84253\">\n<link rel=\"alternate\" title=\"oEmbed (JSON)\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fcybersecurity-ai-chinese-threat-actors%2F\">\n<link rel=\"alternate\" title=\"oEmbed (XML)\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fcybersecurity-ai-chinese-threat-actors%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"wp-singular post-template-default single single-post postid-84253 single-format-standard wp-theme-scoopnewsgroup wp-child-theme-cyberscoop\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/cybersecurity-ai-chinese-threat-actors\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--event js-stickybar\">\n<div class=\"stickybar__details\" readability=\"4.9180327868852\">\n<div class=\"stickybar__info js-sticky-bar-content\" readability=\"32\">\n<p>Voting is open for the 2025 CyberScoop 50 awards!<\/p>\n<\/div>\n<p> <a class=\"stickybar__link button button-tertiary\" href=\"https:\/\/cyberscoop.com\/cyberscoop50\/\">Click here!<\/a> <\/div>\n<p> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"26.371490280778\">\n<div class=\"single-article__header-content\" readability=\"36.388392857143\">\n<p> Cyber defenders say AI technologies are quickly evolving to help stop sophisticated threat groups, including Chinese adversaries, from embedding themselves inside target organizations. <\/p>\n<p>  <br \/>\n<audio id=\"audio-player\" src=\"https:\/\/wp-tts-cdn.api.scpnewsgrp.com\/cyberscoop\/84253\/english.openai.mp3\"><\/audio> <\/p>\n<div readability=\"11\">\n<div>\n<p>Listen to this article<\/p>\n<p>  <\/p>\n<p>0:00<\/p>\n<\/p><\/div>\n<p>  <\/p>\n<p> <span id=\"tts-tooltip\">Learn more.<\/span> <span> This feature uses an automated voice, which may result in occasional errors in pronunciation, tone, or sentiment. <\/span> <\/p>\n<\/div>\n<p>  <\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"360\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed.jpg?resize=640%2C360&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg 2309w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=300,168 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=768,432 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=1024,576 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=1536,864 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=2048,1152 2048w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=600,337 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=1200,675 1200w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed-1.jpg?resize=1498,843 1498w\" sizes=\"(max-width: 1200px) 100vw, 1200px\"><figcaption> (Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"88.533118725447\"><body readability=\"178.87857546637\"><\/p>\n<p>Last year, the escalating concerns about Chinese threat actors breaching U.S. organizations reached a crescendo as federal authorities issued increasingly urgent advisories about China\u2019s \u201cTyphoon\u201d groups infiltrating U.S. networks, pressing organizations to take immediate action.<\/p>\n<p>The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) <a href=\"https:\/\/www.cisa.gov\/topics\/cyber-threats-and-advisories\/nation-state-cyber-actors\/china\/publications\">warned<\/a> that these groups were engaged in a host of massive intrusions, ranging from infiltrating telecommunications networks and sensitive law enforcement communication platforms in order to preposition themselves on critical infrastructure networks to destroy or disrupt services.<\/p>\n<p>Since late January, however, the U.S. government has issued few alerts about Chinese or other nation-state advanced persistent threat actors (APTs), including Russia, North Korea, and Iran. Experts say that despite the lack of warnings, it is more important than ever to stay alert against these groups, particularly given that rapidly developing artificial intelligence (AI) technologies have enabled defenders to spot these threat actors at machine speed and stop them in their tracks.<\/p>\n<p>\u201cYour ability to respond quickly is really important,\u201d Alex Stamos, CISO at SentinelOne, told CyberScoop. \u201cYou can\u2019t spend fifteen, twenty minutes for your security operations center analyst to go to the bathroom and then come back and look at an alert and to make a decision because the threat actors are already ten steps ahead of you.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>\u201cChinese threat actors are going for very large-scale operations,\u201d Alon Schindel, VP of AI and threat research at Wiz, told CyberScoop. \u201cAI can empower cybersecurity teams to walk faster and reduce the number of issues. You can reduce the remediation time. That\u2019s the thing.\u201d<\/p>\n<h5 class=\"wp-block-heading\" id=\"h-ai-brings-it-all-together\">AI brings it all together<\/h5>\n<p>Experts emphasize that AI\u2019s real value in identifying and halting sophisticated threat actors lies in its capacity to process vast amounts of information across an organization\u2019s tech surface. It can then correlate that data to identify and potentially thwart suspicious behavior swiftly. <\/p>\n<p>\u201cAI is there to augment your efforts by tying in a lot of the disparate context or the context that\u2019s lacking between different siloed systems,\u201d Cristian Rodriguez, Americas Field CTO at CrowdStrike, told CyberScoop. \u201cWe are firm believers that AI helps bridge that gap across disparate data sources so that contextually there\u2019s a better understanding of the steps that an adversary needs to take to be successful in their tradecraft.\u201d<\/p>\n<p>\u201cTo help and try to understand whether it is a real attack or whether it is just some other activity, whether it\u2019s a false positive alert by a security product, you can use the context that you have from your actual production environment, from your code, and the threat detection products,\u201d Schindel said. \u201cYou can feed an LLM with all this information, and within a few seconds, you can get a conclusion with a high level of confidence, whether it is a real attack or whether it is just a false positive or maybe some ordinary activity in your environment.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Before AI, defenders had massive amounts of information compiled in different locations with little ability to tie events together occurring in different log sources across the tech stack. The logs did not traditionally go into a repository \u201cthat allows for hyper scaling and hyper analysis of what those data points mean when they\u2019re put together,\u201d Stamos said.<\/p>\n<h5 class=\"wp-block-heading\" id=\"h-the-cloud-nexus-is-critical\">The cloud nexus is critical<\/h5>\n<p>Most experts agree that the increasing adoption of cloud-based technologies is central to the problem of disparate data sources. As information moves between cloud and on-premises systems, it creates more avenues for threat actors to move around laterally within an organization.<\/p>\n<p>\u201cVery few companies have visibility across their cloud infrastructure and their on-premise tech in a way where they see all of it at the same time and detect and track a threat actor in real time across all of those different environments,\u201d Stamos said. \u201cAnd very few companies can respond fast enough.\u201d<\/p>\n<p>According to Stamos, this lack of visibility specifically benefits Chinese threat actors, notably in the Microsoft-based systems that dominate the enterprise sector\u2019s cloud, security, and operating systems. \u201cWhat [Chinese threat actors] have gotten very good at is chaining vulnerabilities across those three areas,\u201d he said. \u201cFor example, you can have a cloud entry point where they can brute force a username and password.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>\u201cThat\u2019s something that\u2019s not getting logged, not getting alerted on,\u201d Stamos said. \u201cAnd so, they can just brute force for days until they find a user password pair that works for them and then use that against the VPN tied to Microsoft Active Directory, and then get onto the domain controller. Now, they can do a traditional domain controller attack. That\u2019s not something you can do in the cloud; that\u2019s only local.\u201d<\/p>\n<p>The combination of cloud-based technologies and stolen identities is at the crux of where AI can start shedding light on intrusions in a way that genuinely helps defenders. \u201cAI can start to bring context around what are outliers within things like login attempts,\u201d CrowdStrike\u2019s Rodriguez said. <\/p>\n<p>\u201cUsing legitimate credentials to get into your environment in lieu of having to use malware, for example, which is very noisy,\u201d is how most unauthorized intrusions occur, Rodriguez added. \u201cAI can act as that opportunity for analysts to scale themselves across these large data sets to contextually understand outliers for login attempts and outliers for authorization across applications. Think of identity, think of what\u2019s happening on your endpoints, and what happens in your cloud workloads. Those are all major data sources a defender must use when responding or analyzing an attack.\u201d<\/p>\n<h5 class=\"wp-block-heading\" id=\"h-warning-ai-systems-themselves-need-protection\">Warning: AI systems themselves need protection<\/h5>\n<p>As beneficial as AI technologies might be in identifying and thwarting threat actors, experts warn that new LLM models and other AI technologies that defenders use to protect assets are themselves prized targets of threat actors. Even worse, these AI technologies can leak organizational secrets.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Chinese threat actors are \u201ctargeting these AI companies directly for their intellectual property, whether it\u2019s ChatGPT, Gemini, all these new models,\u201d Wiz\u2019s Schindel said. \u201cThey are trying to steal information and then build their own versions that are based on what they stole as part of their threat operations.\u201d<\/p>\n<p>For some of these threat actors, \u201cespecially coming out of China and even North Korea, not only are they looking for or using identities, but they\u2019re also looking for these custom large language models or any type of generative AI that you may be hosting within your own cloud services,\u201d CrowdStrike\u2019s Rodriguez said.<\/p>\n<p>\u201cThe adversary is looking for misconfigured large language models and any type of other genAI that you may be hosting in your cloud because that can also act as an exfiltration point if they were to access those systems,\u201d he added. \u201cAnd you\u2019ve inadvertently put sensitive information or IP into those systems. They can ultimately use some prompt engineering or even access to misconfigurations within those models to exfiltrate sensitive data.\u201d<\/p>\n<h5 class=\"wp-block-heading\" id=\"h-what-can-defenders-do\">What can defenders do?<\/h5>\n<p>According to Stamos, very few organizations are currently using AI in a way that prepares them to tackle threats from sophisticated adversaries to provide real-time intervention. \u201cOut of the Fortune 500, there are maybe 150 to 200 companies playing at that level,\u201d he said.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Stamos said organizations \u201cneed to gather as much security telemetry as possible and have it in one data lake that can be queried quickly in real time. You\u2019ve got to do that plumbing, and that\u2019s hard.\u201d<\/p>\n<p>Rodriguez advises organizations to \u201csecure your identities. That is number one. Ensure that you understand the identities that you have for these services, have things like multifactor authentication, and [see to it] that the privileges for these identities are regularly assessed to ensure that you\u2019re not overextending access to any single or handful of identities within environments that are sitting in the cloud, for example.\u201d<\/p>\n<p>Even though using AI to battle Chinese and other threat actors is a complex and high-level task that might need experienced AI engineers to implement, Schindel says that most organizations can easily start the process without this kind of scarce talent. \u201cThe only thing you need is someone enthusiastic about AI on your team,\u201d he said. \u201cThey don\u2019t necessarily have any significant background with AI, just someone who can use it. These models are easy to use.\u201d<\/p>\n<p> <\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"1.7688679245283\">\n<div class=\"author-card\" readability=\"10\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2025\/04\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed.png?w=640&ssl=1\" alt=\"Cynthia Brumfield\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Cynthia Brumfield<\/h4>\n<p> Cynthia Brumfield is a veteran communications and technology analyst who is now focused on<br \/>\ncybersecurity. She runs a cybersecurity news and information site, Metacurity.com. <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p>  <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/cybersecurity-ai-chinese-threat-actors\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>AI can help defenders stop nation-state threat actors at machine<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[235,384,271,1891,282,78,513,647,270,648,3610],"tags":[236,388,277,1893,286,86,517,240,276,651,3613],"class_list":["post-7560","post","type-post","status-publish","format-standard","hentry","category-ai","category-artificial-intelligence-ai","category-china","category-cloud-computing","category-cybercrime","category-cybersecurity","category-iran","category-north-korea","category-russia","category-sentinelone","category-wiz","tag-ai","tag-artificial-intelligence-ai","tag-china","tag-cloud-computing","tag-cybercrime","tag-cybersecurity","tag-iran","tag-north-korea","tag-russia","tag-sentinelone","tag-wiz"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/ai\/\" rel=\"category tag\">AI<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/artificial-intelligence-ai\/\" rel=\"category tag\">artificial intelligence (AI)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/china\/\" rel=\"category tag\">China<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cloud-computing\/\" rel=\"category tag\">cloud computing<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybercrime\/\" rel=\"category tag\">cybercrime<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity\/\" rel=\"category tag\">Cybersecurity<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/iran\/\" rel=\"category tag\">Iran<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/north-korea\/\" rel=\"category tag\">North Korea<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/russia\/\" rel=\"category tag\">Russia<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/sentinelone\/\" rel=\"category tag\">SentinelOne<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/wiz\/\" rel=\"category tag\">Wiz<\/a>","tag_info":"Wiz","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/7560","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=7560"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/7560\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=7560"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=7560"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=7560"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":7560,"date":"2025-04-23T05:00:00","date_gmt":"2025-04-23T10:00:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=84253"},"modified":"2025-04-23T05:00:00","modified_gmt":"2025-04-23T10:00:00","slug":"ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2025\/04\/23\/ai-can-help-defenders-stop-nation-state-threat-actors-at-machine-speed\/","title":{"rendered":"AI can help defenders stop nation-state threat actors at machine speed"},"content":{"rendered":"