IT Brief Ireland - Technology news for CIOs & IT decision-makers
Ireland
AI speeds ransomware, forcing firms to focus on recovery

AI speeds ransomware, forcing firms to focus on recovery

Fri, 17th Jul 2026 (Today)
Mark Tarre
MARK TARRE News Chief

Index Engines said artificial intelligence is making ransomware attacks faster and more effective, linking the shift to frontier AI models such as Mythos and emerging autonomous variants such as JadePuffer.

The company argues that this is forcing organisations to rethink cyber resilience around data integrity and recovery rather than relying only on prevention. In its view, AI is not creating entirely new attack paths but is increasing the speed and precision of existing methods used to exploit weaknesses in connected systems.

That argument reflects a broader debate in the security market over whether AI will alter the balance between attackers and defenders. Security suppliers have increasingly warned that generative and autonomous systems can shorten the time needed to identify vulnerabilities, tailor malicious code and automate parts of an attack that previously required more manual work.

Index Engines said the result is a shift from reactive security models to readiness and rapid response. It argued that even when major technology suppliers patch flaws and strengthen products, residual risk remains because of the complexity of modern IT environments and the difficulty of eliminating every exploitable weakness.

The company pointed to Mythos as an example of how attackers can move more quickly across an environment once they identify openings. It described JadePuffer-style ransomware as a further step, with AI handling more of the attack chain after the initial setup and reducing the level of human intervention needed during an intrusion.

Jim McGann, chief marketing officer at Index Engines, outlined the company's position on the shift.

"Attackers have been exploiting vulnerabilities to reach their targets for years," McGann said. "But Mythos-like capabilities give attackers the ability to identify and operationalize those pathways at machine speed across an entire connected environment. JadePuffer-style variants take that further, using AI to orchestrate the full attack chain with speed, adaptability, and limited human involvement after setup. This requires a fundamental shift in strategy."

Recovery focus

Index Engines said that shift should put greater emphasis on whether data can be trusted after an incident. In the company's view, successful restoration depends not only on having backups available but also on determining whether recovered data has been altered or corrupted by ransomware.

According to Index Engines, its main product, CyberSense, has been on the market since 2019. The software is designed to detect data corruption and help customers assess whether recovered information is clean enough to restore to production systems.

The company said CyberSense uses an AI-based process covered by a patent and draws on analysis conducted in its own lab. It said the system is trained on thousands of ransomware variants and examines how attacks alter data at the byte level, with models retrained and validated as tactics change.

Index Engines also said CyberSense can detect ransomware-induced data corruption with 99.99% ESG-validated accuracy. The claim speaks to a central issue in the resilience market, where companies are trying to distinguish between simple backup availability and trusted recovery after an attack.

McGann said prevention alone is no longer enough.

"No organization can prevent every attack," McGann said. "Recovery is only as good as the integrity of the data behind it. CyberSense verifies data integrity so organizations can restore with confidence instead of guessing whether what they're bringing back is clean."

The comments come as cyber insurers, boards and regulators place greater scrutiny on how quickly organisations can recover from ransomware events and whether restored operations are based on uncompromised data. In practice, that has pushed backup, storage and cyber recovery providers to position detection and validation tools as a key part of incident response.

For Index Engines, the message is that AI changes the tempo of ransomware rather than the basic logic of attacks. The company argues that organisations should assume some intrusions will succeed and prepare for that outcome by testing recovery processes and validating the integrity of the data they plan to restore.