AI Didn’t Create New Vulnerabilities, It Made Old Ones Affordable

Infrastructure was never fully hardened, and for years, it didn't need to be. Exploiting a misconfigured DNS rule or an over-permissive IAM role required real skill: understanding protocol internals, chaining privileges, building custom tooling. That complexity was a natural filter. Most attackers couldn't pull it off. AI removed the filter. This week, researchers broke out of AWS Bedrock's "isolated" sandbox using DNS tunneling and escaped Snowflake's coding agent via process substitution, techniques that once required deep infrastructure expertise. With AI, these attacks become reproducible, teachable, almost routine. Wiz published an AI-powered bounty hunting crash course last month. Check Point documented a single developer building 88,000 lines of deployment-ready malware in a week using an AI IDE. That's the real shift: AI gives every attacker the tooling and complexity that once required a full-time team. The vulnerability surface didn't change, but the population that can exploit it just expanded by orders of magnitude. For defenders, this means the old risk math is broken. "Nobody would bother exploiting this" is no longer a valid assumption. Every misconfiguration, every architectural shortcut, every "we'll fix it next quarter" is now in play, because the cost to exploit it just dropped to near zero. RSA Conference opens tomorrow with every vendor promising AI agent security. The products are real, AI posture management, security tooling, runtime protection, and many of them matter. But the week's disclosures remind us that the hardest problem isn't building new AI defenses, it's that AI makes every existing infrastructure weakness exploitable at a speed and scale we never planned for. The vulnerability backlog didn't grow. The exploitation clock just got 100x faster.