DEVCORE Launches New Service to Combat AI-Driven Cyber Threats

As artificial intelligence rapidly transforms the landscape of cyber offense and defense, Taiwanese cybersecurity firm DEVCORE is launching a new proactive service to help businesses stay ahead of increasingly complex threats. The company's new Offensive Product Security Research (OPSR) service aims to assist enterprises in identifying high-risk attack surfaces and vulnerabilities early in the product development cycle.

“

AI is rapidly changing the competition between cyber offense and defense.

DEVCORE observes that AI is significantly shortening the time hackers need for vulnerability research, intelligence gathering, and attack preparation. This acceleration allows for more scalable and sophisticated attacks, creating a more challenging and unpredictable threat environment for businesses. Simultaneously, corporate cybersecurity needs are evolving, shifting the focus from traditional system protection to product security, supply chain risks, and overall operational resilience.

The firm highlights that as the speed at which defenses can patch vulnerabilities struggles to keep pace with attackers, companies increasingly need methods like red teaming. These exercises validate defensive capabilities from an attacker's perspective, focusing on core assets and critical defenses. Furthermore, supply chain security remains a growing concern, pushing cybersecurity needs beyond internal and external networks to encompass product safety and the verification of overall operational resilience.

“

As the speed at which defenses patch vulnerabilities becomes increasingly difficult to keep up with attackers, companies need to validate defense capabilities through methods like red teaming.

DEVCORE's OPSR service goes beyond simply discovering product security flaws. It analyzes core architectures and trust boundaries to uncover deep-seated risks within product design, system architecture, and business logic. The service also assesses the potential for multiple weaknesses to be chained together to form a complete attack path. It includes remediation recommendations and post-fix validation testing, establishing a comprehensive security process from vulnerability discovery to risk assessment and repair verification.

“

Only by truly understanding the attacker's thinking and methods can enterprises establish a resilient defense architecture.

DEVCORE co-founder and CEO Weng Hao-cheng emphasizes that understanding attackers' mindsets and methods is crucial for building resilient defense structures. He notes that corporate cybersecurity needs have expanded from system protection to product security and supply chain risk management. The company continuously translates its attack research capabilities into practical services, with red teaming validating defenses from an attacker's viewpoint and OPSR extending this approach to product security for earlier risk detection. Co-founder and Senior Vice President Hsu Nien-en adds that while AI enhances efficiency in vulnerability research and analysis, human experience and offensive thinking remain irreplaceable for identifying business logic flaws or devising novel attack strategies. He anticipates a future of enhanced human-machine collaboration in cybersecurity, where tools handle scalable tasks and researchers focus on strategic design and high-value vulnerability research, provided legal and AI control frameworks permit.

“

In the future, under the premise of legal permission and controllable AI, cyber offense and defense will emphasize human-machine collaboration.