
Share
Despite headlines touting a fully autonomous attack, new details show that humans still play a crucial role in the execution of AI-driven cybercrimes.
In the world of cybersecurity, the line between human and machine is blurring. The recent announcement of an AI-run ransomware attack sent ripples through the tech community, but it turns out that this "first" wasn't as groundbreaking as initially thought. New information reveals that while an AI agent carried out the technical execution of the attack, a human was still very much in control.
The attack, which targeted a small business in California, made headlines for its alleged use of artificial intelligence to automate the ransomware process. However, further investigation by cybersecurity experts has uncovered several key points: a human chose the victim, set up the infrastructure, and supplied stolen credentials. This means that while AI played a significant role, it wasn't quite the fully autonomous cybercrime debut that last week's headlines suggested.
The incident highlights an important aspect of modern cyber threats: even as technology advances, human decision-making remains a critical component in the execution of these attacks. This blend of human and machine raises new questions about the future of cybersecurity and the measures needed to protect against evolving threats.
AI's role in this attack was primarily technical. The AI agent, likely a sophisticated algorithm, handled tasks such as encrypting files, generating ransom notes, and communicating with the victim. These are tasks that can be automated once the initial setup is complete. However, the critical steps-choosing the target, setting up the infrastructure, and obtaining the necessary credentials-were all performed by a human.
This combination of human and AI capabilities is not unique to this incident. Researchers have long warned about the potential for AI to enhance cybercrime, but the reality is that these technologies are still tools in the hands of skilled individuals. The human element remains essential for planning and executing complex attacks, especially when it comes to social engineering and gaining initial access to a system.

The use of AI in this attack also underscores the need for robust cybersecurity measures. Traditional defenses may not be enough against AI-driven threats. Organizations must adopt a multi-layered approach that includes advanced threat detection, regular security audits, and employee training on recognizing and responding to potential attacks.
The intersection of human and machine in cybercrime has significant implications for both individuals and organizations. While the headline-grabbing notion of fully autonomous AI attacks may seem like science fiction, the reality is more nuanced. Human actors are still necessary to orchestrate these attacks, which means that traditional security strategies remain relevant.
For individuals, this means staying vigilant about phishing attempts and other social engineering tactics. For organizations, it means investing in comprehensive cybersecurity frameworks that can adapt to new threats. The human element in cybercrime also highlights the importance of ethical considerations in AI development. As AI becomes more integrated into various aspects of our lives, ensuring that these technologies are used responsibly is crucial.
The first AI-run ransomware attack serves as a wake-up call for the cybersecurity community. It demonstrates that while AI can automate certain tasks, it does not eliminate the need for human oversight and intervention. As technology continues to evolve, so too must our strategies for protecting against cyber threats.
Tags
Original Sources
The 'first' AI-run ransomware attack still needed a human | TechCrunch
↗ https://techcrunch.com/2026/07/06/the-first-ai-run-ransomware-attack-still-needed-a-human
About the author
Amara's entry point into AI was an epidemiology role at a London research hospital, where she spent five years studying how digital health tools reached — or conspicuously failed to reach — underserved communities. Watching early algorithmic systems in healthcare quietly entrench existing inequalities, she redirected her career toward the systemic consequences of AI at scale. She covers AI through an unflinching lens: who benefits, who bears the cost, and what evidence actually says versus what the press release claims. Her writing is calm and precise, but she doesn't mistake balance for neutrality.
More from The Steward →This Week's Edition
13 July 2026
60 articles
Related Articles
Related Articles
More Stories
© 2026 Cedar & Bloom. All rights reserved.