[{"data":1,"prerenderedAt":30},["ShallowReactive",2],{"nr-en-open-source-ki-cyber-gap-shrinks-four-months":3},{"slug":4,"title":5,"dek":6,"date":7,"time":8,"publishedAt":9,"updated":10,"updatedAt":10,"dateFmt":11,"updatedFmt":10,"kind":12,"tier":13,"author":14,"authorName":15,"topics":16,"tracker":22,"trackerLabel":23,"headlineStat":24,"image":25,"ogImage":26,"imageAlt":5,"csv":10,"minutes":27,"words":28,"html":29},"open-source-ki-cyber-gap-shrinks-four-months","Open-Source AI Closes Security Gap – Cyber Defenders Under Pressure","The UK AI Security Institute documents a critical turning point: open-weight AI models like GLM-5.2 and DeepSeek V4-Pro now lag only 4–7 months behind proprietary frontier models in cyber capabilities. The window for defense is shrinking rapidly.","2026-07-18","17:54","2026-07-18T17:54:00+02:00","","July 18, 2026","daten","standard","ideal-syka","Ideal Syka",[17,18,19,20,21],"AI Security","Cyber Threats","Open-Source AI","Frontier Models","AI Security Institute","\u002Fstand-der-ki","AI Progress","Cyber capability gap shrunk from 6–10 months to 4–7 months","\u002Fnewsroom\u002Fimg\u002Fopen-source-ki-cyber-gap-shrinks-four-months.webp","\u002Fog-nr\u002Fopen-source-ki-cyber-gap-shrinks-four-months.en.png",2,457,"\u003Cp>The window for cyber defenders is closing. The UK AI Security Institute (AISI) has for the first time publicly measured how quickly open-weight AI models have caught up in cyber attack capabilities – and the numbers are alarming: the performance gap has shrunk from an original \u003Cstrong>six to ten months to just four to seven months\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch2>Key Facts\u003C\u002Fh2>\n\u003Cul>\n\u003Cli>\u003Cstrong>GLM-5.2\u003C\u002Fstrong> and \u003Cstrong>DeepSeek V4-Pro\u003C\u002Fstrong> now reach the level of closed frontier models from four to seven months earlier\u003C\u002Fli>\n\u003Cli>In early 2025, this lag was still \u003Cstrong>six to ten months\u003C\u002Fstrong> – the gap is closing continuously\u003C\u002Fli>\n\u003Cli>Open models are \u003Cstrong>significantly cheaper\u003C\u002Fstrong> to operate and their security measures can be easily circumvented due to lack of external oversight\u003C\u002Fli>\n\u003Cli>The AISI warns of a \u003Cstrong>&quot;permanent and irreversible abuse risk&quot;\u003C\u002Fstrong> from downloadable, modifiable models\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch2>How AISI Measured It\u003C\u002Fh2>\n\u003Cp>The institute used two different testing methods to evaluate cyber capabilities:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Narrow Cyber Tasks\u003C\u002Fstrong> comprise 70 specific tasks across four difficulty levels – from non-technical to expert level. They cover vulnerability research, reverse engineering, web exploitation, and cryptography. GLM-5.2 performed comparably to Opus 4.6, showing a lag of approximately \u003Cstrong>four months\u003C\u002Fstrong>. DeepSeek V4-Pro reached the level of Opus 4.5 from November 2025.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cyber Ranges\u003C\u002Fstrong> test autonomous capabilities in simulated networks. In the &quot;The Last Ones&quot; range – a 32-step attack on an enterprise network with four subnets and around 20 hosts – GLM-5.2 reached a similar level to Opus 4.5. According to AISI, a human expert would complete this task in roughly 20 hours.\u003C\u002Fp>\n\u003Ch2>The Dilemma: Benefits vs. Risk\u003C\u002Fh2>\n\u003Cp>Open models bring genuine advantages: \u003Cstrong>private hosting without data flowing back\u003C\u002Fstrong> to providers, adaptability, lower costs, and a reliable foundation that providers cannot discontinue. This is precisely why many enterprises find them attractive.\u003C\u002Fp>\n\u003Cp>But the downside is substantial. Once released, \u003Cstrong>safeguards can be removed\u003C\u002Fstrong>, copies can be redistributed, and models can run on private systems beyond any control. The AISI speaks of a \u003Cstrong>&quot;permanent and irreversible abuse risk&quot;\u003C\u002Fstrong> – because anyone can download the weights, modify them, and operate them without oversight.\u003C\u002Fp>\n\u003Ch2>What This Means for Enterprises\u003C\u002Fh2>\n\u003Cp>The gap between open and proprietary models is closing faster than many anticipated. This poses new questions for security architectures: How do you prepare for cyber attacks when attackers&#39; tools improve monthly? Open models are becoming cheaper and more accessible – making them more attractive to cybercriminals, but also valuable for legitimate security researchers. The balance between innovation and protection is becoming harder to maintain. Organizations need to design their defenses not just against today&#39;s known attack patterns, but flexibly enough to keep pace with rapidly advancing AI capabilities.\u003C\u002Fp>\n\u003Ch2>Sources\u003C\u002Fh2>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fthe-decoder.de\u002Foffene-ki-modelle-werden-billiger-und-gefaehrlicher-zeitfenster-fuer-cyber-verteidiger-schrumpft\u002F\">The Decoder (DE)\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Editorially owned by \u003Ca href=\"\u002Fen\u002Fautor\u002Fideal-syka\">Ideal Syka\u003C\u002Fa>. Sources and method: \u003Ca href=\"\u002Fen\u002Fredaktion\">Newsroom &amp; method\u003C\u002Fa>. Tips and corrections: \u003Ca href=\"mailto:ai@i6eal.de\">ai@i6eal.de\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n",1784407480324]