AI cyber risks and growing concerns over China’s AI ambitions dominated a US Congressional hearing. Experts warned that AI is accelerating cyber attacks, exposing critical infrastructure, and intensifying geopolitical competition. Lawmakers highlighted national security, privacy concerns, software vulnerabilities, and the urgent need for stronger cybersecurity frameworks.
Artificial intelligence (AI) is rapidly transforming the global cybersecurity landscape, offering unprecedented opportunities for defense while simultaneously creating powerful new tools for cybercriminals and hostile nation-states. These growing concerns were at the forefront of a recent United States Congressional hearing, where lawmakers and technology experts warned that AI-driven cyber threats are becoming increasingly sophisticated and difficult to counter.
The hearing, held before the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, came shortly after President Donald Trump signed an executive order directing federal agencies to develop a comprehensive framework for evaluating advanced AI cyber capabilities. The order also seeks to expand access to frontier AI models for government agencies and operators of critical infrastructure, underscoring the strategic importance of artificial intelligence in national security planning.
During the session, experts highlighted how AI is dramatically accelerating the discovery of software vulnerabilities, increasing the speed of cyber attacks, and intensifying technological competition between the United States and China. Lawmakers expressed concern that the federal government must move quickly to understand and respond to the evolving threat environment.
Subcommittee Chairman Andy Ogles emphasized the urgency of the issue, noting that advanced AI models are already reshaping the cyber threat landscape. He warned that the government cannot afford to lag behind in understanding the capabilities and risks associated with these technologies.
One of the most significant warnings came from Sandra Joyce, Vice President of Google Threat Intelligence Group. Joyce testified that cybercriminals are already leveraging artificial intelligence to improve their operations and develop more advanced attack methods.
According to Joyce, recent investigations uncovered evidence suggesting that AI had been used to develop a zero-day exploit, marking a concerning milestone in the evolution of cybercrime. Zero-day vulnerabilities are software flaws that remain unknown to developers, making them especially dangerous because attackers can exploit them before security patches are released.
Joyce explained that AI enables threat actors to identify vulnerabilities more quickly and move through compromised networks at unprecedented speed. Traditional cybersecurity teams often struggle to respond as rapidly as AI-enhanced attackers can operate.
She warned that autonomous AI agents are increasingly capable of assisting cybercriminals before and after network infiltration. Such systems can automate reconnaissance, identify weaknesses, and accelerate malicious activities, significantly increasing the scale and efficiency of cyber attacks.
Chris Meserole, Executive Director of the Frontier Model Forum, stressed that advanced AI systems present both opportunities and risks. He noted that the same AI tools capable of discovering vulnerabilities for defensive purposes can also be weaponized by attackers.
Meserole pointed to a growing concern known as “adversarial distillation,” a process through which foreign competitors could potentially replicate advanced AI capabilities while removing built-in safety protections. Such developments, he warned, could allow hostile actors to rapidly enhance their technological capabilities and target critical infrastructure.
The possibility of foreign governments exploiting advanced AI systems has become a major concern for US policymakers. Experts argued that safeguarding AI innovations and maintaining technological leadership are increasingly important components of national security.
Jack Cable, Chief Executive Officer of Corridor Security and a former adviser at the Cybersecurity and Infrastructure Security Agency (CISA), highlighted how AI is transforming the speed and scale of cyber risks. He argued that while AI may not create entirely new categories of vulnerabilities, it significantly accelerates the rate at which vulnerabilities are introduced, discovered, and exploited.
Cable urged both governments and private companies to focus more heavily on secure software development practices. Preventing vulnerabilities before software deployment, he argued, is far more effective than relying solely on patching flaws after they are discovered.
China emerged as a recurring theme throughout the hearing as lawmakers questioned witnesses about the country’s growing influence in artificial intelligence. Experts warned that low-cost Chinese AI models could gain widespread adoption across software development, cloud computing services, and critical infrastructure sectors if the United States fails to maintain its competitive edge.
Joyce underscored the strategic stakes involved in the global AI race, stating that there is little room for complacency when competing against major technological rivals. She also pointed to previous incidents in which Chinese cyber groups demonstrated the capability to infiltrate critical infrastructure networks, reinforcing concerns about the intersection of AI development and national security.
While much of the hearing focused on cybersecurity and geopolitical competition, Democratic lawmakers also raised concerns regarding privacy, surveillance, and civil liberties. Matthew Guariglia, Senior Policy Analyst at the Electronic Frontier Foundation, cautioned that artificial intelligence could dramatically expand government surveillance capabilities if not accompanied by robust safeguards and transparency measures.
Guariglia argued that stronger oversight mechanisms are essential to ensure that advances in AI do not undermine individual rights and freedoms. As governments increasingly adopt AI-powered technologies, balancing security needs with privacy protections will remain a significant policy challenge.
The hearing ultimately highlighted a growing consensus among lawmakers and experts that artificial intelligence is reshaping cybersecurity at an unprecedented pace. While AI offers powerful defensive capabilities, it also introduces new risks that demand coordinated action from governments, industry leaders, and technology developers.
| Also Read: India Strengthens Arctic Strategy with Nordic Nations Cooperation |
As the global competition for AI leadership intensifies—particularly between the United States and China—the ability to secure critical infrastructure, protect sensitive networks, and establish effective safeguards will likely play a decisive role in shaping the future of national and international security.
