Large Language Models (LLMs) and Generative AI in Cybersecurity and Privacy: A Survey of Dual-Use Risks, AI-Generated Malware, Explainability, and Defensive Strategies

· Source: Artificial Intelligence · Field: Technology & Digital — Artificial Intelligence & Machine Learning, Cybersecurity & Data Privacy · Depth: Expert, quick

Summary

A comprehensive survey published on 2026-07-08 examines the dual-use risks and defensive strategies associated with Large Language Models (LLMs) and generative AI (GenAI) in cybersecurity and privacy. This analysis covers systems like ChatGPT, Claude, Gemini, LLaMA, Copilot, and Stable Diffusion from vendors including OpenAI, Anthropic, Google, Meta, Microsoft, and Stability AI. The survey highlights how these technologies enable both automated defense, such as real-time threat detection and secure code generation, and sophisticated attacks, noting that LLM-generated malware is projected to account for 50% of detected threats by 2025, a significant increase from 2% in 2021. Drawing on over 70 academic papers and industry reports, the work synthesizes insights from platforms like Google Play Protect, Microsoft Defender, AWS, and GitHub, addressing topics such as zero-day detection, DevSecOps, federated learning, synthetic content analysis, and explainable AI (XAI).

Key takeaway

For security leaders and engineers navigating the complex challenges of AI-driven cybersecurity, you must prioritize next-generation security frameworks. Your teams should implement model watermarking and adversarial defense strategies to counter the rapid surge in LLM-generated malware, which is projected to reach 50% of detected threats by 2025. Proactive cross-industry collaboration is essential to establish secure, scalable LLM systems and ensure trustworthy AI deployment.

Key insights

LLMs present significant dual-use challenges in cybersecurity, necessitating advanced defensive frameworks and responsible deployment.

Principles

Method

The survey synthesizes insights from over 70 academic papers and industry reports, reviewing real-world case studies across major platforms to identify beneficial and malicious LLM applications.

In practice

Topics

Best for: CTO, VP of Engineering/Data, Executive, AI Scientist, AI Security Engineer, Director of AI/ML

Related on AIssential

Open in AIssential →

Editorial summary, takeaway, and curation by AIssential. Original article published by Artificial Intelligence.