CyberStrikeAI Accelerates Automated Attacks on Edge Devices
An AI-orchestrated offensive framework called CyberStrikeAI has moved from a public GitHub release to apparent operational use by threat actors, highlighting how artificial intelligence is speeding up established attack techniques rather than replacing them. The framework reportedly combines more than 100 tools for reconnaissance, exploitation, and reporting under an orchestration layer that automates multi-step intrusion chains, and researchers said they observed at least 21 unique IP addresses running related infrastructure in early 2026. One reported incident linked the tool to a successful attack against Fortinet FortiGate appliances, reinforcing concerns that internet-facing edge devices such as firewalls and VPN systems remain attractive targets because they are often under-patched and lightly monitored.
Broader reporting indicates AI is amplifying multiple attack categories at once, including social engineering, vulnerability exploitation, authentication attacks, and side-channel techniques, while also creating a growing attack surface around AI systems themselves. Security researchers and industry observers warn that AI-enabled phishing, deepfakes, automated vulnerability discovery, prompt injection, data poisoning, jailbreaking, model manipulation, API abuse, and malicious models are making attacks faster and more scalable. The trend underscores the need for organizations to verify exploitability, accelerate remediation of exposed assets, and continuously test defenses as offensive operations become more autonomous.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
3 events from the most recent confirmed update back to the earliest known activity.
CyberStrikeAI reportedly used against Fortinet FortiGate appliances
The SC Media piece says CyberStrikeAI was allegedly used in a successful attack against Fortinet FortiGate appliances. This was presented as an example of the framework being applied in real-world operations against edge devices.
Researchers observe CyberStrikeAI infrastructure activity
Researchers reportedly observed at least 21 unique IP addresses running CyberStrikeAI infrastructure during January and February 2026. The observations were cited as evidence that the framework had moved from public release to operational use by threat actors.
CyberStrikeAI appears on GitHub
CyberStrikeAI, described as an AI-orchestrated offensive security framework bundling more than 100 tools, appeared on GitHub in November 2025. The framework's orchestration layer was highlighted as automating complex attack chains and lowering the skill barrier for attackers.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
2 references tracked. Mallory keeps watching after this page renders.
See the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
AI-Enabled Attackers Outpace Human-Centered Cyber Defenses
Booz Allen Hamilton and a senior Department of Defense cyber official warned that threat actors are using artificial intelligence to compress the cyberattack kill chain and operate faster than most organizations can detect, patch, and respond. The reporting says cybercriminal and state-backed groups are applying large language models and automated tooling to speed reconnaissance, vulnerability prioritization, exploitation, persistence, and scaling across many targets, with one cited example describing the open-source **HexStrike** framework exploiting thousands of Citrix NetScaler devices in under 10 minutes via a single critical `CVE`. Defense officials said the same trend is affecting the defense industrial base, where attackers are increasingly combining AI-assisted workflows with techniques such as living off the land and zero-day discovery. The warnings come as organizations impose stricter controls on AI use after security and operational failures tied to AI-assisted development and deployment. One cited example says Amazon now requires senior approval for AI-assisted code changes by junior and mid-level engineers after an outage and internal concerns over the blast radius of GenAI-generated modifications, while broader reporting points to exposed secrets, vulnerable code, and compromises involving AI platforms. Across the coverage, the common message is that defenders must move toward more automated, AI-assisted remediation and continuous exposure assessment, while preserving expert human review, secure engineering practices, and coordinated vulnerability disclosure to keep pace with machine-speed attacks.
Jun 8, 2026
AI-Enabled Threats and Security Failures Across Edge Devices, AI Agents, and Infostealer Campaigns
Threat actors are increasingly operationalizing AI and automation to scale attacks and exploit weak controls across both enterprise and consumer environments. An open-source offensive platform dubbed **CyberStrikeAI**—a Go-based “AI-native security testing” framework integrating 100+ tools—was observed in infrastructure used to target **Fortinet FortiGate** edge devices at scale; researchers linked activity to an IP (212.11.64.250) exposing a `CyberStrikeAI` banner and to scanning/communications patterns consistent with mass exploitation. Separately, a newly disclosed and rapidly patched **OpenClaw** vulnerability showed how AI agent tooling can be hijacked: researchers reported that a malicious website could take over a developer’s locally running agent due to inadequate trust-boundary validation, prompting urgent upgrades to **OpenClaw v2026.2.25+**. In parallel, a “vibe-coding” hosted app on the *Lovable* platform leaked data impacting **18,000+ users** after a researcher found **16 flaws (six critical)** tied to mis-implemented backend controls (including missing/incorrect row-level security in *Supabase*), enabling unauthorized access to records and actions like bulk email and account deletion. Criminal monetization also continues to evolve beyond AI-agent risks. **AuraStealer**, a Russian-language infostealer positioned as a successor/competitor after Lumma disruptions, was advertised on multiple underground forums and is supported by a sizable C2 footprint; analysis of 200+ samples identified **48 C2 domains**, with operators abusing low-cost TLDs (e.g., `.shop`, `.cfd`) and using **Cloudflare** as a reverse proxy to mask origin infrastructure. Broader reporting and commentary reinforced that identity and access failures remain a dominant breach driver and that AI adoption is expanding the attack surface via over-privileged agents and “shadow AI,” while ransomware operators increasingly target recovery paths (including backups) and dwell to corrupt restore points. Several items in the set were non-incident thought leadership or workforce content (skills gap, jobs listings, awards, and general AI security tips) and did not add event-specific technical details beyond high-level risk framing.
Mar 21, 2026
AI-Driven Security Risk: Shadow AI and Offensive Use of CyberStrikeAI
Organizations are facing expanding AI-related attack surface from *shadow AI* adoption and proliferating machine identities, with unsanctioned AI tools and integrations increasing data access pathways, identity-to-application trust relationships, and third-/fourth-party dependencies. Commentary and executive guidance pieces emphasize that visibility alone is insufficient as AI-driven automation accelerates operational change faster than governance, and that defenders should expect new roles, shared responsibility across teams, and increased reliance on automation to manage AI risk. Separately, threat intelligence reporting tied to recent intrusions against **Fortinet FortiGate** devices says attackers have weaponized **CyberStrikeAI**, a new open-source AI security testing platform that bundles 100+ tools with an AI decision engine to automate intrusion workflows. Team Cymru reported CyberStrikeAI activity from 21 unique IPs (Jan. 20–Feb. 26), including infrastructure linked to communications with breached FortiGate devices, with much of the hosting observed in China, Singapore, and Hong Kong and additional nodes in the U.S., Europe, and Japan; the activity was assessed as associated with **Chinese state-sponsored** operations, and the developer was linked to other AI-assisted offensive projects (e.g., *PrivHunterAI*, *InfiltrateX*).
Apr 3, 2026