Skip to Content

AI-Dominated Web Traffic & AI Becoming Both the Threat and a Shield

September 19, 2025 by
AI-Dominated Web Traffic & AI Becoming Both the Threat and a Shield
Lighthouse IT Solutions, Matthew Almendinger

LITS bits: 

 This week, Mark and Matt examine the new reality where AI bot traffic has surpassed human web activity, while simultaneously exploring how AI is reshaping both threats and defenses. We cover emerging challenges from Gen Z workers' security blind spots, AI-powered ransomware targeting developer tools, rising AI costs, and Google's open-source FACADE anomaly detection system. AI has become cybersecurity's ultimate double-edged sword, creating sophisticated new attack vectors while offering powerful defensive capabilities.


Have a listen and find details about each topic below:



AI Bot Traffic Surpasses Human Web Use

Recent reports show bots now account for more internet traffic than humans, with 87% of them classified as malicious. These bots aren’t just harmless crawlers—they’re targeting account credentials, committing ad fraud, and scraping data for AI training.

The rise of AI-powered bots puts added strain on infrastructure and complicates security strategies. MSPs face the tricky job of filtering out harmful bots while still allowing beneficial AI crawlers that support visibility and search.

👉https://www.techbrew.com/stories/2025/08/25/report-shows-surge-in-ai-bot-traffic


Gen Z: The New Cybersecurity Risk

They may be digital natives, but Gen Z workers bring new risks to the workplace. Their comfort with oversharing online often creates privacy blind spots, and their blurred lines between personal and professional data use pose unique security challenges.

For MSPs, this means designing training programs that resonate with younger employees, rather than repeating traditional security workshops that may not stick. Connecting cybersecurity to the platforms and habits Gen Z already uses could make the difference.

👉https://www.itbrew.com/stories/2025/08/26/gen-z-workers-though-digital-natives-are-not-immune-to-cybersecurity-risks


AI-Powered Ransomware & Backdoored Developer Tools

Threat actors are evolving fast—leveraging open-source AI models to automate ransomware attacks. Even developer tools aren’t safe. The popular Nx CLI tool was recently backdoored, exposing secrets through AI-powered techniques.

For MSPs, this highlights the need to audit AI integrations and developer environments with as much care as traditional infrastructure. Every “productivity enhancer” could double as an attack vector if left unchecked.

👉https://tldrsec.com/p/tldr-sec-294


The Cost of AI: Pricing Models in Flux

AI may be powerful, but it isn’t cheap. Vendors are experimenting with new pricing models—often shifting to subscriptions—to make services sustainable. At the same time, events like the Open Source Security Summit remind us that transparency is key to building trust in AI adoption.

MSPs can help clients run a cost-benefit analysis when choosing AI tools, ensuring the solutions scale with growth rather than becoming hype-driven expenses.

👉https://www.cio.com/article/4046457/vendor-pricing-experiments-leave-cios-ai-costs-in-flux.html


Google recently open-sourced FACADE

Google's in-house anomaly detection system designed to catch insider threats and compromised accounts. The tool applies deep learning to spot unusual behaviors in real time.

For MSPs, open-source tools like FACADE offer a chance to enhance client security without breaking budgets. Leveraging community-driven innovation could bring enterprise-level protection to smaller businesses.

👉https://newsletter.danielmiessler.com/p/ul-495