Black Hat 2025 shows agentic AI moving from theory to practice
At Black Hat 2025, agentic artificial intelligence is demonstrating tangible value within cybersecurity, marking a significant evolution from its largely theoretical presence at Black Hat 2024. This advancement represents a shift towards proactive, autonomous systems that can independently investigate, respond to, and predict potential cyberattacks.
This transformation fundamentally alters security operations. Dr. Anya Sharma, Chief Scientist at DarkTrace, stated, “We’re seeing a fundamental change in how security operations are conducted. Agentic AI allows us to automate tasks that were previously impossible, freeing up human analysts to focus on strategic initiatives.” This automation extends beyond simple threat identification, enabling more complex security functions.
One notable application of agentic AI is in threat hunting. This process, traditionally manual and intensive, is being revolutionized as agentic AI continuously scans networks for anomalies. It correlates data from diverse sources, proactively identifying potential threats before they fully materialize. Ben Carter, CISO of GlobalTech Enterprises, commented on its impact, stating, “The ability to autonomously hunt for threats is a game-changer. We’ve seen a dramatic reduction in dwell time and a significant improvement in our overall security posture.”
Agentic AI also plays a crucial role in incident response. It automates the triage of incidents, isolates compromised systems, and initiates remediation procedures. This capability significantly reduces the time required to respond to cyberattacks, thereby minimizing potential damage. The efficiency gained in these critical moments can mitigate widespread impact.
Despite these advancements, the integration of agentic AI introduces new challenges for security professionals. A comprehensive understanding of how these systems operate is required, along with methods to validate their findings and ensure resistance against manipulation by malicious actors. Sharma emphasized the necessity of trust in these systems, stating, “Trust is paramount. We need to build systems that are transparent, explainable, and auditable.” The ongoing development in cybersecurity suggests a future characterized by collaborative efforts between human expertise and agentic AI, enhancing the effectiveness and efficiency of security professionals.