As attackers increasingly weaponize AI to target critical systems, IBM is equipping clients with advanced defenses to counter these threats
IBM announced an expansion of its enterprise security program for the AI era and has partnered with Anthropic as part of Project Glasswing, an industry initiative dedicated to securing the world’s critical software infrastructure.
As attackers leverage frontier AI to accelerate every stage of the attack lifecycle—from reconnaissance and vulnerability discovery to exploitation—IBM is combining its deep expertise with a new generation of defenses designed for the AI era.
Project Glasswing builds on these efforts by bringing together a coalition of security and technology leaders dedicated to protecting critical infrastructure and sharing insights across industries. As part of this initiative, IBM has been identifying and addressing vulnerabilities in widely used software and sharing its findings with the broader community.
Rob Thomas, SVP Software & Chief Commercial Officer, IBM, said “AI-powered attacks have already moved beyond what traditional defenses can match. We’re helping clients assess their exposure and putting tools like IBM Concert to work in more environments. Separately, as part of Project Glasswing, we’ve been hardening our own products and contributing fixes back to the open-source community. The collaboration makes the entire ecosystem stronger,”
IBM is already investing and leading in this space:
* IBM Concert uses AI to help organizations find and fix vulnerabilities before threats happen by unifying application, infrastructure, and network signals into a single, operational view — moving organizations from passive monitoring to coordinated, intelligent response. Its built-in security capabilities extend into the developer’s IDE through IBM Concert Secure Coder, which detects and prioritizes risks by business impact and generates automatic remediations as code is written, stopping vulnerabilities before they reach production.
* IBM Consulting helps clients translate new AI-driven risks into their specific environments by redesigning vulnerability and open-source management for compressed timelines. IBM Autonomous Security, a multi-agent service, delivers coordinated detection, decision-making, and response at machine speed, supported by IBM’s business partners.
* IBM and Red Hat’s open-source leadership helps clients mitigate the risks that come with using unsupported code. By contributing fixes proactively and maintaining enterprise-grade versions of widely used open-source components, IBM and Red Hat can move quickly when issues arise — giving clients the confidence of open source with the reassurance of reliable, rapid support.
