CERT has introduced new cybersecurity guidelines directing organizations to patch critical vulnerabilities in internet facing systems within 12 hours of identification where feasible. The move comes amid rising concerns over the increasing use of artificial intelligence and large language models by threat actors to automate cyberattacks, accelerate vulnerability discovery, and improve exploitation speed. According to a newly released 38 page blueprint published on Monday, the agency warned that AI assisted cyber exploitation is reducing the time needed for attackers to identify weaknesses, weaponize exploits, and target exposed services, weak identities, insecure APIs, and misconfigured systems.
CERT In said organizations are becoming increasingly dependent on interconnected digital infrastructure, cloud ecosystems, software supply chains, operational technologies, and AI enabled platforms, raising the potential impact of cyber threats across industries. The agency noted that malicious actors are already using AI for several attack related activities, including attack surface discovery, exploit analysis, phishing content creation, and malware development. This shift is enabling adversaries to shorten attack preparation timelines while bypassing traditional security measures. At the same time, AI enabled systems themselves are emerging as targets for attacks such as prompt injections, data leakage vulnerabilities, jailbreaking methods, model manipulation, training data poisoning, model theft, and compromises within orchestration pipelines, creating risks to confidentiality and system integrity.
The cybersecurity agency warned organizations to expect exploitation timelines to shrink significantly as cyberattacks become more autonomous and adaptive. To strengthen resilience, CERT In outlined several defensive principles focused on rapid detection, containment, and recovery during compromise scenarios. It advised organizations to adopt a Zero Trust approach through continuous verification and least privilege access controls while implementing layered security strategies to reduce single points of failure. The blueprint also emphasized reducing exposure to vulnerabilities, embedding secure by design practices into applications and AI workflows, maintaining operational continuity during cyber incidents, and protecting sensitive data throughout its lifecycle. Additionally, organizations were encouraged to reduce software supply chain risks linked to third party software, AI models, and dependencies through software bill of materials, provenance validation, and security assessments. Regular testing through red teaming, vulnerability assessments, penetration testing, independent audits, and stronger governance around AI systems was also highlighted as an important part of cybersecurity preparedness.
As part of the guidance, CERT In called for continuous, risk based vulnerability and patch management practices to address risks tied to software flaws, misconfigurations, insecure APIs, publicly accessible services, and weak identities. Known exploited vulnerabilities affecting internet facing and critical systems are expected to be remediated within 12 hours where applicable. Critical externally exposed vulnerabilities should be addressed within one day, while known exploited vulnerabilities affecting internal systems should also be resolved within a day unless alternate mitigations are documented. Critical internal vulnerabilities affecting high value systems are advised to be fixed within three days, while high severity vulnerabilities should be remediated within five days based on risk prioritization. In situations where patches are unavailable, organizations are advised to implement temporary safeguards such as system isolation, access restrictions, web application and API protections, enhanced monitoring, or feature disablement until fixes become available. CERT In added that organizations should continuously reassess risks, validate security controls, strengthen resilience measures, and improve operational readiness to keep pace with rapidly evolving AI driven cyber threats.
Follow the SPIN IDG WhatsApp Channel for updates across the Smart Pakistan Insights Network covering all of Pakistan’s technology ecosystem.
