IBM expands AI security tools as attackers shift to automated threats
IBM is broadening its enterprise security portfolio to address AI-driven cyberattacks, introducing tools designed to detect and stop threats that use artificial intelligence to automate reconnaissance, vulnerability discovery, and exploitation. The company also deepened its involvement in Project Glasswing, an industry effort to secure critical open-source software.
The shift reflects how cybersecurity vendors are repositioning defenses around AI resilience. For development teams and IT professionals, the announcement signals that protecting software supply chains and developer environments has become a central security concern.
New detection and remediation platform
IBM Concert aggregates application, infrastructure, and network data into a single operational view. The platform identifies vulnerabilities and coordinates responses before threats escalate.
IBM Concert Secure Coder integrates security functions directly into developers' IDEs, detecting vulnerabilities as code is written and suggesting fixes automatically. The tool aims to stop vulnerabilities before code reaches production.
Rob Thomas, SVP Software & Chief Commercial Officer at IBM, said: "AI-powered attacks have already moved beyond what traditional defenses can match. We're helping clients assess their exposure and putting tools like IBM Concert to work in more environments."
Open-source and infrastructure focus
IBM is collaborating with Anthropic through Project Glasswing to identify and patch vulnerabilities in widely used software. AI tools have lowered the barrier for sophisticated attacks on critical infrastructure and open-source ecosystems, making this work more urgent.
IBM's contributions include coordinated vulnerability disclosure, upstream patch contributions, and sharing practices with other participants. The company also leverages its Red Hat partnership to maintain enterprise-grade versions of key open-source components, enabling faster support when vulnerabilities emerge.
Thomas said the collaboration "makes the entire ecosystem stronger." IBM's approach combines AI-assisted detection tools with consulting services to help enterprises manage security risks tied to generative AI.
For teams building connected products and services in embedded systems, industrial infrastructure, and cloud environments, securing development workflows and open-source dependencies has become as critical as traditional perimeter defense. Learn more about AI for Cybersecurity Analysts or explore AI Coding Courses to understand how security integrates into modern development.
Your membership also unlocks:
