AI Wrote Your Code. Did You Design Your Security?

AI Wrote Your Code. Did You Design Your Security?

There’s a growing confidence in the startup and builder community right now:

“I shipped it in a weekend. Claude scaffolded the backend. Copilot filled in the gaps. It works.”

That last sentence is doing a lot of work.

It works — for you.
It works — in testing.
It works — in the happy path.

But security isn’t measured on the happy path.

And the AI tools that helped you build your system are increasingly helping others probe it.

This isn’t an argument against AI-assisted development. I use these tools every day. They are extraordinary accelerants.

It’s an argument for intellectual honesty about what they are — and what they are not.

The Incident That Raised the Question

In February 2026, Bloomberg reported that a hacker used a jailbroken version of Anthropic’s Claude chatbot to assist in a month-long campaign targeting multiple Mexican government agencies.

Anthropic
OpenAI

According to the reporting, the attacker:

  • Exploited at least 20 vulnerabilities
  • Stole approximately 150GB of data
  • Targeted tax records, voter files, and civil registry systems

Security researchers at Gambit Security identified the activity and described how the attacker used roleplay, persistence, and jailbreak techniques to extract exploit guidance from the model.

Whether Claude was the central enabler or a sophisticated assistant is less important than what the case signals:

Commercial AI tools can meaningfully assist offensive operations when guardrails are bypassed.

That’s not a theoretical risk anymore.

It’s an operational reality.

(Source: Bloomberg, February 25, 2026)

Correlation Is Not Causation — But It Is Context

Recent reporting from IBM shows:

  • A 44% year-over-year increase in exploitation of public-facing applications
  • A nearly 50% rise in active ransomware groups

Meanwhile, researchers at Google describe an evolving “pitched battle” where AI is being tested on both sides of the cybersecurity equation.

None of these reports conclusively prove that AI caused the spike in attacks.

But they do show something important:

At the exact moment AI tools are becoming capable of accelerating reconnaissance, scripting, and vulnerability chaining, the exposed attack surface of modern applications continues to expand.

Cloud-native systems. API sprawl. Microservices. Rapid deployment cycles. Solo founders shipping production SaaS.

The environment is primed for acceleration.

AI is a multiplier inside that environment.

The Real Risk Isn’t AI. It’s Overconfidence.

Let’s separate two ideas that are often blurred together:

  1. AI-assisted hacking
  2. AI-built applications with weak security foundations

They are related, but not identical.

An experienced engineer using AI can build secure systems.

An inexperienced founder using AI can ship working systems that are structurally fragile.

The vulnerability is not the tool.

The vulnerability is knowledge depth.

AI reduces friction.
Friction historically forced learning.

When friction drops, the illusion of competence rises.

You can now deploy:

  • JWT-based authentication
  • Role-based access control
  • Cloud storage integration
  • Payment flows
  • Multi-tenant architecture

Without fully understanding:

  • Token scoping
  • Refresh lifecycle security
  • Privilege escalation paths
  • CORS misconfiguration risks
  • Secret exposure in client bundles
  • Rate-limiting thresholds
  • Dependency vulnerabilities

The system works.

Until it doesn’t.

AI Indexes the Good and the Bad

Large language models are trained on massive corpora of public code.

That includes:

  • Production-grade architecture
  • Insecure tutorials
  • Deprecated libraries
  • Hardcoded credentials
  • Poorly implemented auth flows
  • Copy-paste StackOverflow fixes

Models don’t label patterns as “secure” or “insecure.”

They model probability.

If insecure implementations are common in public repositories, those patterns exist in the distribution.

AI doesn’t invent vulnerabilities.

It reflects the ecosystem.

And the ecosystem contains a lot of fragile code.

Offense Has Scaled

Historically, moderately skilled attackers might manually test:

  • Common injection points
  • Misconfigured endpoints
  • Authentication bypasses
  • Known CVEs

Today, AI-assisted workflows can:

  • Enumerate endpoints automatically
  • Generate exploit payload variants
  • Chain vulnerabilities
  • Refactor attack scripts dynamically
  • Scale scanning across large domain sets

You built one product.

An automated adversary can test thousands.

The asymmetry favors scale.

AI enhances scale.

What “Production-Ready” Actually Means

There’s a difference between:

“The app runs.”

And:

“The architecture withstands adversarial testing.”

Production-ready security requires:

  • Threat modeling
  • Secret management strategy
  • Clear token lifecycle design
  • Enforced least-privilege access
  • Input validation discipline
  • Rate limiting and abuse prevention
  • Logging, monitoring, and alerting
  • Dependency management and patching processes
  • External security review

AI can help write components of that.

It cannot assume responsibility for it.

Security is not syntax.

It is structure.

The Founder’s Diagnostic

If you are building anything that touches:

  • Financial data
  • Health data
  • Logistics operations
  • Identity systems
  • Government systems
  • AI-driven workflows

Ask yourself:

Can I clearly diagram and explain:

  • My authentication flow
  • My authorization model
  • My token issuance and refresh logic
  • My secret storage approach
  • My infrastructure boundaries
  • My logging and alerting system

Or would I say:

“The AI handled that part.”

If it’s the latter, you don’t have a tooling problem.

You have an architectural exposure.

The Balanced Position

This is not an anti-AI argument.

It’s a maturity argument.

Use AI:

  • To accelerate scaffolding
  • To improve refactoring
  • To assist with documentation
  • To enhance testing coverage
  • To review code

But treat AI-generated output as:

Junior-level draft material.

Review it.

Challenge it.

Threat-model it.

Have someone with security depth audit it before you handle sensitive data at scale.

Because attackers are already using the same tools — and often with fewer ethical constraints.

The Durable Reality

AI did not create insecure software.

It compressed time.

Time to build.
Time to ship.
Time to deploy.
Time to probe.

Acceleration benefits builders.

It also benefits attackers.

The teams that endure this shift won’t be the ones who build the fastest.

They’ll be the ones who understand:

AI can write your code.

Only you can design your resilience.

And resilience is what survives contact with the real world.

/by