By NHI Mgmt Group Editorial TeamPublished 2026-01-06Domain: Cyber SecuritySource: SentinelOne

TL;DR: SentinelLABS’ 2025 review says threat actors used AI to accelerate spam, phishing, and code generation, monitored defender intelligence platforms, and abused trusted infrastructure at scale, while ransomware and credential theft kept evolving, according to SentinelOne. The signal for practitioners is that operational tempo, infrastructure trust, and intelligence leakage now matter as much as malware itself.


At a glance

What this is: SentinelLABS’ 2025 review shows adversaries using AI, trusted platforms, and defender intelligence channels to improve scale, stealth, and monetization.

Why it matters: It matters because identity, access, and trust controls now have to account for faster attack cycles, more convincing social engineering, and abuse of legitimate services across human and non-human identity programmes.

👉 Read SentinelOne's 2025 SentinelLABS threat research review


Context

The core problem in this review is not that adversaries invented entirely new attack classes. It is that they industrialised familiar ones by combining AI assistance, trusted infrastructure, and awareness of defender workflows, which raises the bar for detection, trust governance, and response speed across security programmes.

For identity and access teams, the intersection is direct. Attackers are abusing accounts, tokens, publishing platforms, and intelligence-sharing ecosystems as operational resources, which means human identity, non-human identity, and workload trust models now need to be evaluated together rather than as separate problems.


Key questions

Q: What breaks when attackers can use AI to scale phishing and spam?

A: Traditional spam and content filters lose effectiveness when every message can be varied cheaply at runtime. The failure is not just volume, but diversity plus speed. Security teams need behavioural controls, abuse telemetry, and response automation that can catch repeated outcomes across changing lures, domains, and delivery paths.

Q: Why do trusted platforms make attacker campaigns harder to stop?

A: Because the attacker inherits the credibility and resilience of a legitimate service. Blocking one domain or account rarely removes the delivery model if the same workflow can move to another free host, messaging channel, or API. Teams should focus on trust abuse patterns, not just individual malicious artefacts.

Q: How do security teams know whether their intelligence sharing is exposing them?

A: Look for rapid changes in attacker infrastructure after publication, repeat monitoring of your public indicators, and unusually fast takedowns or re-registration patterns. If public detections consistently trigger attacker adaptation, separate sensitive telemetry from public artefacts and tighten disclosure timing.

Q: Who is accountable when attackers abuse legitimate accounts and tokens?

A: Accountability sits with the teams that own identity lifecycle, platform governance, and response processes. That includes security, IAM, and service owners when accounts or tokens can publish, post, or automate externally. Governance should assign clear ownership for inventory, rotation, revocation, and abuse response.


Technical breakdown

AI as an attack accelerator, not a new attack class

The review shows AI being used to scale existing criminal work, including runtime code generation, spam creation, CAPTCHA bypass, and phishing content generation. That matters because the defender is not facing a fundamentally different objective, but a faster production line for old objectives. AI lowers the cost of experimentation, increases message diversity, and helps attackers preserve volume when individual payloads get blocked. Practical detection must therefore focus on behavioural patterns, infrastructure reuse, and repeated outcomes rather than on whether content appears machine-written.

Practical implication: Shift controls toward behavioural detection, abuse throttling, and response automation rather than relying on content-based filters alone.

Trusted infrastructure as a criminal delivery layer

The article repeatedly shows adversaries leaning on legitimate platforms because they inherit reputation, availability, and operational resilience. Free-tier publishing, commercial AI APIs, Telegram, and social platforms become parts of the intrusion chain rather than mere hosting locations. This changes the defensive problem: blocking one domain or sample does not remove the attacker’s service model. The real issue is abuse of trust at scale, where infrastructure that users and controls already accept becomes the transport layer for phishing, C2, or monetisation.

Practical implication: Add trust-abuse monitoring to your control stack, including reputation checks, platform abuse telemetry, and domain lifecycle scrutiny.

Defender visibility is now an offensive signal

SentinelLABS’ findings on threat actors monitoring Validin and VirusTotal show that intelligence-sharing platforms can leak operational awareness to adversaries in near real time. That creates a feedback loop where disclosure, detection, and takedown all influence attacker behaviour faster than many organisations can adapt. The practical lesson is that exposure management no longer stops at protecting assets. It also includes understanding what your public detections, enrichment sources, and indicator-sharing habits reveal about your own response patterns and timing.

Practical implication: Review what your public telemetry, feed sharing, and takedown workflows reveal about detection coverage and response latency.


Threat narrative

Attacker objective: The attacker aims to scale monetisation and operational reach while reducing the cost, visibility, and time required to conduct phishing, credential theft, ransomware, or espionage.

  1. Entry begins when attackers use AI-generated lures, fake CAPTCHA pages, malicious subdomains, or compromised publishing platforms to reach victims or defenders.
  2. Escalation follows when the attacker converts that initial trust into credential theft, token abuse, malware delivery, or command-and-control access through legitimate services.
  3. Impact occurs when stolen credentials, crypto assets, or operational intelligence are used to monetise access, evade detection, or expand campaign reach.

NHI Mgmt Group analysis

AI weaponisation now changes attacker throughput, not attacker intent. The review is clear that AI is being used to accelerate phishing, code generation, and social engineering rather than to create entirely new classes of compromise. That distinction matters for governance because many control frameworks still focus on content review or known signatures, both of which degrade quickly when generation becomes cheap and repetitive blocking becomes the norm. Practitioners should treat AI as an operational multiplier that compresses attacker dwell time and increases volume, not as a separate risk silo.

Trusted platform abuse is becoming a core identity problem, not just a hosting problem. When attackers use commercial AI APIs, free publishing services, or messaging platforms, they are exploiting the implicit trust attached to legitimate accounts, tokens, and service relationships. That makes the issue relevant to NHI governance as well as cloud and application security, because abuse often rides on compromised non-human credentials or delegated access. The field needs to move from perimeter thinking to lifecycle control over every identity that can publish, post, or call an API.

Defender intelligence channels now require exposure management. The article’s examples of adversaries watching threat intelligence platforms show that information-sharing is also a source of operational disclosure. That does not mean stopping sharing, but it does mean teams should be deliberate about what their public detections, enrichment sources, and takedown activity reveal. In practice, security operations and identity teams should assume their own telemetry can influence attacker timing, and govern that visibility accordingly.

Industrialised credential and crypto theft reinforces the need for identity-led controls. The review’s credential theft, phishing, and AI-assisted abuse themes point to the same governance gap: identities are being treated as reusable business resources by attackers, while many enterprises still manage them as static accounts or isolated secrets. That gap spans human identities, service accounts, tokens, and platform access. Shadow trust sprawl: the uncontrolled spread of legitimate services, delegated access, and reusable credentials creates hidden attack paths that traditional account review cannot see. Practitioners should map and reduce that trust surface before attackers turn it into an execution path.

What this signals

Adversaries are increasingly exploiting the same trust fabric that defenders rely on, so identity programmes need to treat publishing platforms, AI APIs, and intelligence-sharing channels as governed access surfaces rather than external conveniences. That means lifecycle control, visibility, and abuse response now extend beyond internal directories into every delegated service relationship.

Shadow trust sprawl: this review suggests a new operating reality in which legitimate services become attack infrastructure unless ownership, scope, and revocation are tightly controlled. Teams should align the NHI Lifecycle Management Guide with monitoring for rapid infrastructure churn and public exposure of service relationships.

The practical signal for CISOs is that speed now matters in two directions: attackers use AI to accelerate abuse, while defenders need faster inventory, faster revocation, and faster response to public disclosure. Identity security is becoming a time-to-control problem as much as a policy problem.


For practitioners

  • Audit public trust surfaces Review which accounts, tokens, publishing systems, and third-party services can be used to reach customers, analysts, or internal users. Focus on services that inherit reputation, such as free-tier publishing, messaging platforms, and delegated API access, and remove unnecessary exposure.
  • Add AI-assisted abuse detections Tune detection logic for high-volume, variable content generation, fake CAPTCHA patterns, automated form submissions, and repeated infrastructure creation. Treat AI-generated variation as an evasion technique, not just a content characteristic.
  • Constrain non-human identities with tighter lifecycle control Inventory service accounts, API keys, tokens, and platform credentials that can publish, post, or call external services. Rotate, revoke, and scope them to the smallest feasible function, especially where one compromised identity could create many public artefacts.
  • Review intelligence-sharing exposure Examine which indicators, takedowns, and detections become visible to attackers through public feeds or enrichment platforms. Where practical, separate sensitive detection logic from public artefacts and shorten the window between discovery and remediation.
  • Harden social engineering response Use user awareness, browser isolation, and verification steps for fake job offers, CAPTCHA lures, and contact-form abuse. Pair user-facing controls with network monitoring for suspicious browser-to-domain patterns and rapidly registered infrastructure.

Key takeaways

  • The review shows that 2025’s dominant shift was acceleration of existing attack patterns, not the invention of entirely new ones.
  • AI, trusted infrastructure, and defender visibility gaps now combine to amplify phishing, credential theft, ransomware, and espionage.
  • Identity-led governance, especially around non-human identities and delegated trust, is the control surface that changes attacker economics.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

MITRE ATT&CK address the attack and risk surface, while NIST CSF 2.0, NIST SP 800-53 Rev 5 and CIS Controls v8 set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
MITRE ATT&CKTA0001 , Initial Access; TA0006 , Credential Access; TA0011 , Command and ControlThe review centres on phishing, credential theft, and C2 through legitimate services.
NIST CSF 2.0DE.CM-1The article highlights continuous monitoring for abuse, AI spam, and defender exposure.
NIST SP 800-53 Rev 5AU-6Threat research and attacker monitoring require timely analysis of security events and exposures.
CIS Controls v8CIS-4 , Secure Configuration of Enterprise Assets and SoftwareAbuse of legitimate services depends on weak configuration and poor exposure control.

Map observed abuse to ATT&CK and prioritise detections for initial access, credential theft, and C2 patterns.


Key terms

  • Trust Abuse: Trust abuse is the misuse of legitimate services, accounts, or relationships to carry malicious traffic, content, or operations. In practice, attackers exploit reputation, availability, and delegated access so that their activity blends into normal business use until detection or takedown occurs.
  • AI-Assisted Abuse: AI-assisted abuse is malicious activity where machine-generated content or automation increases the scale, speed, or variety of an attack. It does not change the attacker’s objective, but it reduces cost and improves resilience against simple filtering or manual review.
  • Shadow Trust Sprawl: Shadow trust sprawl is the accumulation of unmanaged or poorly governed access paths across services, tokens, platforms, and delegated relationships. It creates hidden routes for delivery and persistence that are easy for attackers to exploit and difficult for defenders to inventory.

What's in the full report

SentinelOne's full review covers the operational detail this post intentionally leaves for the source:

  • Campaign-by-campaign breakdowns of the 2025 research publications and the specific adversary tradecraft observed.
  • Technical context for how AI was used in runtime code generation, spam automation, and CAPTCHA bypassing.
  • Case details on infrastructure reuse across free-tier platforms, messaging services, and attacker-controlled delivery layers.
  • Additional examples of how defenders’ own intelligence platforms were monitored and exploited as operational signals.

👉 SentinelOne's full review includes the campaign details, attacker patterns, and research highlights behind the year-end summary.

Deepen your knowledge

The NHI Foundation Level course, the industry's only accredited NHI security programme, covers NHI governance, machine identity security, and secrets management. It is designed for practitioners who need to turn identity governance into operational control across modern security programmes.
NHIMG Editorial Note
Published by the NHIMG editorial team on 2026-01-06.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org