Source: The Register: Biting the hand that feeds
As applications pile permissions and rely on chain-of-command API calls, large language models have reduced the technical barrier for crafting sophisticated exploits—attackers no longer need deep API knowledge to discover and chain together vulnerabilities. Prompt engineering is now a viable hacking methodology. Defenders face attackers who can operate at human-like speed across distributed systems without traditional coding skills. Organizations betting on "secure by default" architectures will outpace those still managing sprawling permission models designed for monolithic applications.