Pre-LLM phishing was constrained by language. Post-LLM phishing is not. The result is a measurable upgrade in lure quality, a wider reach into non-English-speaking markets, and an emerging class of personalised attacks that were previously economically unviable.
Martynas Vareikis
Martynas Vareikis
Martynas Vareikis is the AI Editor at Ransomnews. He covers the intersection of artificial intelligence and information security — from machine-learning models in defensive tooling to the adversarial use of LLMs by ransomware operators, deepfake-driven social engineering, and the rise of agentic threats. His reporting focuses on translating fast-moving AI research into practical guidance for defenders, journalists, and the broader security community. Reach Martynas via [email protected].
Deepfake video and AI voice cloning have moved from research demos to operational tools used in fraud, fraud-driven CEO scams, election interference, and harassment. Here is the actual state of the technology, the real incidents, and what defences exist.
AI is now in nearly every security product’s marketing copy. Some of it has changed the game; some of it has not changed anything. Here is a category-by-category honest assessment of where machine learning has actually moved the security needle and where the marketing has run ahead of the technology.
Prompt injection is the SQL injection of the LLM era — easy to demonstrate, hard to fully defend against, and present in essentially every commercial LLM application. Here is what it is, why it persists, and the realistic mitigation playbook.