The 11 Runtime Attacks Breaking AI Security - And How CISO s Are Stopping Them
VentureBeat, Friday, January 9th, 2026
Enterprise security teams are losing ground to AI-enabled attacks - not because defenses are weak, but because the threat model has shifted. As AI agents move into production, attackers are exploiting runtime weaknesses where breakout times are measured in seconds, patch windows in hours, and traditional security has little visibility or control.
Mike Riemer, field CISO at Ivanti, has watched AI collapse the window between patch release and weaponization.
"Threat actors are reverse engineering patches within 72 hours," Riemer told VentureBeat. "If a customer doesn't patch within 72 hours of release, they're open to exploit. The speed has been enhanced greatly by AI."
Most enterprises take weeks or months to manually patch, with firefighting and other urgent priorities often taking precedence.