separate findings this cycle show artificial intelligence threaded into offensive operations: sophos found a lab using ai to speed up building tools that evade endpoint security from sophos, crowdstrike and microsoft, and the fbi with google dismantled a china-based phishing-as-a-service operation that used ai-powered kits to run industrial-scale attacks worldwide. crowdstrike's annual report frames a coordinated siege on the tech sector, attributing 58% of state-sponsored intrusions to china-nexus actors. ai is now a standard component of the attacker's toolkit, not an exception.