Skip content
Are you looking for?

The Defender's Window: AI and Cyber Defence Intelligence Report 2026

CYBER THREAT INTELLIGENCE

This structural assessment examines how frontier AI is reshaping cyber defence, who is being tiered in and out of the new access regimes, and what institutions should do during the window before it closes.

LRQA's specialist threat intelligence team has produced an urgent analysis of three concurrent dynamics: attacker capability uplift, analytical leverage for defenders, and tiered access governance. Giving your organisation the situational awareness and practical guidance needed to act now.

What's inside

  • The Window explained: A structural assessment of the 12-18 month period opened by Anthropic's Project Glasswing and OpenAI's Trusted Access for Cyber (TAC). What it means, why it is finite, and why acting now changes your position when it closes.
  • What Mythos, Glasswing, and TAC actually are: Plain-language profiles of the three new access tiers, who holds them, who does not, and why it matters to organisations not named in either programme's partner list.
  • The capability measurement problem: A framework for evaluating any AI cyber capability claim, offensive or defensive, vendor or regulator, against what is actually being measured. Essential reading before your next procurement decision.
  • Understanding versus pattern-matching: The four failure modes of current defensive AI, and how to translate them into procurement questions that distinguish genuine capability from marketing.
  • Correlation tradecraft: The positive case for AI in defence. Why data quality is the deciding variable, what good looks like in a SOC, and why AI works best as a correlation engine rather than a verdict machine.
  • Access governance: What Glasswing and TAC mean for your organisation's defensive posture, which tier you realistically qualify for, and why fundamentals matter more than access tier in practice.
  • Intelligence collection and the commercial AI surface: Why commercial AI platforms have become an early-stage intelligence surface for adversary intent, and why that surface is narrowing faster than most defenders have noticed.

 

Threat ready where it matters most

Trusted by organisations worldwide to identify, manage and respond to cyber risk at scale.

Cyber vulnerabilities managed every year

Confirmed incidents handled annually

CREST accreditations - one of the only organisations worldwide with a full suite

Managed SOC Services and Incident Response teams

 

Latest news, insights and upcoming events

  • CVE-2023-28802: Zscaler Bypass via Service Restart

    LRQA Cyber Labs

    Article

    LRQA details CVE-2023-28802, a Zscaler Client Connector vulnerability that allowed low-privilege users to bypass ZIA/ZPA controls via service...

  • The importance of the right risk management partner

    Article

    Risk has become a sharper instrument in today’s operating environment, increasingly visible, connected and unforgiving of complacency.

  • How to prepare for CMMC

    LRQA logo on navy background

    Article

    For many defense suppliers, CMMC is just another headache. In this post, we explain how organizations can be...

  • LRQA wins Best Penetration Testing Solution at teissAwards2026

    teissAwards2026 group photo

    News

    LRQA won Best Penetration Testing Solution and was runner-up for Best Incident Response Solution at the teissAwards2026, recognising...

  • LRQA launches 'Risk by Numbers': A new view on...

    Working man inspecting crops in the field

    News

    LRQA explores how leading brands are redefining risk management — connecting data, people and performance to turn volatility...

  • LRQA named among top 10 global Purple Teaming providers...

    LRQA logo on navy background

    News

    LRQA has been recognised by GBHackers as one of the “10 Best Purple Teaming Companies in 2025,” highlighting...

  • AITM Attacks Webinar: Bypassing MFA & Sessions

    Person typing on a laptop displaying green code on a dark screen, viewed from an overhead angle in a minimalist workspace

    Event

    Join our webinar on 11 June, to learn how attackers intercept tokens through real-time phishing techniques, why traditional...

  • Resilient by Design: UK Critical Systems Security

    Event

    Explore rising cyber threats to the UK’s Critical National Infrastructure and learn practical strategies to strengthen IT and...

  • Operational Risk & Technology Europe 2025

    LRQA logo on navy background

    Event

    LRQA is proud to sponsor Operational Risk & Technology Europe, bringing together financial sector leaders to advance resilience...