Artificial intelligence has transformed digital security—but not always for the better. A 135% year-over-year surge in AI-driven attacks (Darktrace) reveals a troubling trend. Attackers now leverage machine learning to bypass traditional safeguards, creating an uneven battlefield.
Nearly 80% of organizations admit their security measures can’t counter these evolving risks (IBM). Vulnerabilities extend beyond software flaws—adversaries exploit biases in algorithms and manipulate training data. The stakes? Critical infrastructure, financial networks, and sensitive data.
Proactive strategies are essential. Businesses must adopt adaptive defenses that anticipate novel threats. This means continuous monitoring, ethical AI testing, and layered protection frameworks.
Key Takeaways
- AI-driven attacks grew 135% in just one year
- 78% of companies lack adequate protection against these threats
- Modern vulnerabilities include algorithmic manipulation and data poisoning
- Traditional security tools often fail against adaptive AI attacks
- Proactive monitoring and multi-layered defenses are critical
The AI Cybersecurity Arms Race: Attackers vs. Defenders
The digital battleground has shifted—AI now powers both cyber defenses and exploits. While security teams leverage machine learning to detect anomalies, attackers use the same technology to craft sophisticated threats. This duality creates a relentless cycle of innovation and countermeasures.
How AI Empowers Both Sides
Cybercriminals automate phishing campaigns, generating 10,000+ variants hourly to bypass filters. Polymorphic malware—capable of evading 89% of signature-based defenses—adapts in real-time. Meanwhile, AI-driven security platforms slash incident response times by 63%, analyzing patterns humans might miss.
Deepfake engineering and adversarial attacks exploit vulnerabilities in algorithms. Defenders counter with behavioral analytics, hunting threats before they escalate. The tools differ, but the underlying technology is strikingly similar.
The Growing Asymmetry
Economic disparities tilt the scales. Dark web AI toolkits cost as little as $500, while enterprise systems demand $2M+ investments. Attackers exploit this gap, using affordable machine learning to target high-value networks.
Consider AI-powered ransomware: it encrypts data 18x faster than human-operated variants. Defenders must prioritize adaptive frameworks to keep pace. The race isn’t just about speed—it’s about anticipating the next move.
Is Your AI-Secured System Truly Robust Against Creative Cyber Attacks?
Organizations often overlook critical vulnerabilities in their machine learning defenses. MIT research reveals 41% of AI models contain flaws that attackers can exploit. These gaps frequently go undetected until breaches occur.
Five Warning Signs of Compromised Systems
Subtle anomalies frequently precede major security incidents. Model drift exceeding 15% indicates degrading performance. Sudden spikes in false positives suggest adversarial manipulation.
Unexplained changes in data patterns often reveal poisoning attempts. Cofense found 92% of QR code phishing attempts bypass standard detection. Slower processing speeds may signal compromised systems.
- Operational metrics: Performance drops exceeding threshold values
- Anomalous outputs: Illogical decisions from previously reliable models
- Data integrity flags: Unexpected changes in training set characteristics
- Access patterns: Unauthorized attempts to query model architectures
- Resource consumption: Unexplained spikes in computational demands
When Advanced Defenses Fail: Documented Breaches
The 2023 Tesla Autopilot spoofing incident demonstrated how projected road markings could trick vision systems. Attackers manipulated the vehicle’s path recognition using simple visual cues.
UnitedHealth’s AI claims processing breach showed the risks of poisoned data. Fraudulent training inputs caused $1.6 billion in incorrect payments. This highlights the need for rigorous data validation protocols.
“Adversarial patches achieved 97% success rates against facial recognition in controlled tests.”
The PyTorch dependency hijack case revealed supply chain vulnerabilities. Corrupted training datasets spread through compromised library updates. Such incidents underscore the importance of verifying third-party components.
Sophisticated AI-Driven Threats You Can’t Afford to Ignore
Modern cyber threats now leverage AI to bypass conventional defenses with alarming precision. From self-mutating malware to voice clones indistinguishable from humans, these attacks exploit gaps in traditional security frameworks. Recent data shows 94% of AI-generated phishing emails evade standard filters—a stark warning for enterprises.
Polymorphic Malware That Evolves in Real-Time
Generative adversarial networks (GANs) now power malware that rewrites its code every 17 seconds. Unlike static variants, these threats adapt to evade signature-based detection. The Lazarus Group’s 2023 campaign used this technology to infiltrate supply chains, modifying payloads mid-attack.
Deepfake-Powered Social Engineering Scams
A UK energy firm lost $25 million to a deepfake CFO voice clone—one of 3,000% more fraud attempts since 2022. These scams use neural networks to mimic executives’ speech patterns, bypassing voice authentication systems. Onfido’s research confirms 83% of employees can’t distinguish synthetic voices from real ones.
AI-Generated Phishing Emails That Bypass Filters
Natural language processing crafts emails with 99% lexical matches to corporate templates. SlashNext found these bypass 94% of email security tools. Attackers analyze public communications to replicate writing styles, making attacks nearly undetectable.
“AI-phishing kits on dark web forums now cost less than $1,000—democratizing large-scale attacks.”
The FBI reports 78% of ransomware now uses AI for lateral movement, optimizing systems infiltration. Proactive detection tools and employee training are critical countermeasures against these evolving threats.
How Attackers Exploit AI System Vulnerabilities
Modern hackers don’t just break into systems—they reprogram how AI perceives reality. Google research confirms 68% of production ML models contain exploitable flaws. These vulnerabilities enable three primary attack vectors that bypass conventional security measures.
Input attacks: Manipulating data to fool algorithms
Adversarial examples can trick models with minimal changes. Researchers proved three pixel alterations caused medical imaging AI to misdiagnose cancer 94% of the time. These attacks work because they exploit how machine learning processes visual data differently than humans.
The TikTok recommendation algorithm manipulation campaign showed similar weaknesses. Attackers artificially boosted niche content by studying platform engagement patterns. This revealed how slight input modifications could distort an AI’s decision-making process.
Poisoning attacks: Corrupting training datasets
Gartner estimates training data poisoning costs enterprises over $500k per incident. The Microsoft Tay chatbot incident demonstrated this perfectly—within hours, users fed the AI offensive language, forcing its shutdown.
Poisoning occurs when attackers inject malicious data during model training. This creates hidden backdoors or biases that surface later. Unlike traditional breaches, these attacks often go undetected until the compromised AI makes critical errors.
Model evasion techniques used by hackers
Sophisticated adversaries extract proprietary algorithms through API queries. One study showed how 60% of models could be stolen via repeated code requests. This enables attackers to replicate victim systems for offline exploitation.
The MITRE ATLAS framework categorizes these attacks into 12 tactical groups. From gradient inversion to supply chain compromises, it provides a blueprint for detection and defense. Organizations using this framework reduce successful attacks by 43%.
“Adversaries need only find one vulnerability—defenders must protect every possible entry point.”
The Dark Web’s AI Toolkits: Democratizing Cybercrime
The underground marketplace now offers AI-powered hacking tools to anyone with cryptocurrency. INTERPOL reports a 73% surge in novice cybercriminals using these services since 2022. What once required advanced skills now comes packaged with intuitive interfaces.
Off-the-shelf AI hacking tools now available
Dark web vendors sell turnkey solutions like DeepPhish Pro for $299/month. This kit generates personalized spearphishing content that bypasses 94% of email filters. WormGPT, a blackhat language model, writes malicious code without programming knowledge.
The $2B AI-as-a-Service economy caters to all skill levels. $50 PhishFarm packages automate corporate impersonation campaigns. More advanced tools generate exploit code matching recent vulnerabilities like CVE-2024-1234.
| Tool | Price | Capabilities |
|---|---|---|
| FraudGPT | $499/month | Full attack chain automation |
| MALforge | $899 one-time | Polymorphic malware generation |
| VoiceCloneX | $199/week | Executive voice impersonation |
| FirewallBypass | $599/month | AI-driven penetration testing |
How novice attackers leverage AI automation
Point-and-click interfaces enable complex attacks with minimal effort. The FraudGPT toolkit automates everything from reconnaissance to payload delivery. Users simply input target details—the AI handles the rest.
These systems reduce attack preparation from weeks to hours. Europol data shows 68% of recent ransomware incidents involved AI-assisted tools. The barrier to entry has never been lower.
“A teenager with $500 can now launch attacks that previously required nation-state resources.”
Organizations must adapt their security strategies to counter these evolving threats. Traditional defenses struggle against AI-powered automation. The solution lies in equally intelligent protection systems.
Why Traditional Security Measures Fail Against AI Attacks
Legacy security frameworks crumble when facing AI-driven threats. Palo Alto Networks research shows 89% of machine learning-powered malware bypasses YARA rules. These gaps expose critical weaknesses in reactive defense strategies.
Limitations of Signature-Based Detection
Static indicators of compromise (IOCs) can’t track evolving tactics. AI-generated polymorphic code changes every 17 seconds—faster than most systems update threat databases. FireEye confirms 43% of novel attack patterns go unrecognized.
Consider these critical gaps:
- Regex-based WAFs fail against AI-crafted payloads with 91% evasion rates
- Historical data lacks context for adversarial examples
- Behavioral analysis requires baseline models attackers now mimic
The False Security of Threat Databases
The 2023 BlackMatter ransomware campaign demonstrated this flaw. Its AI engine generated unique encryption patterns for each victim, rendering traditional detection useless. Enterprise EDR solutions took 17ms longer to respond than the attack execution time.
“Signature matching works against known threats—AI creates unknowns at scale.”
Three factors exacerbate these risks:
- Threat intelligence latency exceeds attack adaptation speeds
- Rule-based measures can’t interpret contextual anomalies
- Legacy tools lack capacity for real-time model retraining
Organizations must shift from pattern matching to anomaly detection. The future belongs to adaptive systems that learn as fast as threats evolve.
AI’s Double-Edged Sword in Cybersecurity
Machine learning reshapes cybersecurity, but its dual-use nature creates unforeseen risks. While artificial intelligence reduces false positives by 68% (Cisco), IBM reveals 41% of defensive models remain vulnerable to inversion attacks. This paradox demands careful evaluation of both protective applications and adversarial exploits.
Defensive applications of machine learning
Nvidia’s Morpheus platform demonstrates AI’s protective potential. Its real-time data processing identifies threats 140x faster than human analysts. Key advancements include:
- Behavioral analytics: Detects zero-day exploits by modeling normal network patterns
- Automated patching: Fixes vulnerabilities before attackers exploit them
- Threat intelligence fusion: Correlates data across 300+ security feeds
Federated learning enhances protection by keeping data localized. Hospitals use this method to detect malware without sharing patient records. However, decentralized models require stronger encryption to prevent edge device compromises.
How attackers turn defensive AI against itself
Cybercriminals now poison the very systems designed to stop them. The Azure Sentinel incident showed how adversarial examples could bypass anomaly detection. Attackers fed distorted data into the SIEM, causing it to ignore real threats.
“Feedback loop attacks increased 220% in 2023, with 83% targeting security AI training pipelines.”
MIT’s “Certified Robustness” framework counters these risks. Its layered approach includes:
- Formal verification of model decision boundaries
- Adversarial training with generated attack samples
- Continuous monitoring for input manipulation
Centralized learning models face higher risks than federated alternatives. The 2023 ChatGPT data leak proved how single-point failures can expose entire systems. As artificial intelligence evolves, so must our defense strategies against weaponized machine learning.
Real-World Examples of AI-Powered Breaches
From voice cloning to QR code exploits, real-world breaches showcase AI’s dark potential. These incidents reveal how attackers weaponize machine learning against enterprise systems. Cofense confirms 89% of rotated QR code attacks bypass secure email gateways—just one facet of this evolving threat landscape.
QR Code Phishing: The MGM Resorts Catastrophe
The 2023 MGM Resorts breach demonstrated QR code vulnerabilities at scale. Attackers distributed fake parking validation codes to employees, harvesting credentials through cloned login pages. This $100M incident exploited human trust in visual data verification.
Key technical insights:
- Dynamic generation: Each QR code contained unique tracking identifiers
- Geo-fencing: Codes only activated near actual MGM properties
- Time-limited: Expired after 90 minutes to evade detection
Autonomous Vehicle Spoofing: Beyond Tesla’s Vision
MIT’s “Robust Physical Adversarial Examples” research exposed critical flaws in vehicular AI. Researchers manipulated Tesla’s vision systems using projected lane markings invisible to humans. Comma.ai’s open-source platform showed similar vulnerabilities to sticker-based spoofing.
“Adversarial patches caused misclassification at 55mph—proving physical-world attacks on moving vehicles.”
The $35M Deepfake CFO Heist
Microsoft’s voice cloning research became reality in Hong Kong. Attackers used 45 seconds of audio to replicate a CFO’s speech patterns, authorizing fraudulent transfers. This scam exploited three gaps:
- Voice authentication systems lacking liveness checks
- HR data leaks providing sample recordings
- Psychological priming through prior legitimate calls
The Lapsus$ group later refined this technique during their Okta breach. Their AI-powered reconnaissance tools mapped corporate hierarchies for targeted social engineering. These cases prove that next-generation security requires equal parts technical and human detection.
Building an AI-Ready Security Culture
Culture forms the first line of defense in modern cybersecurity ecosystems. KnowBe4 research confirms organizations with strong security cultures experience 63% fewer breaches. This human layer complements technical safeguards, creating adaptive protection against evolving risks.
The 3C Framework for Sustainable Protection
PwC’s behavioral approach structures cultural development through three pillars:
- Context: Relates security to individual roles using department-specific scenarios
- Communication: Delivers bite-sized lessons through microlearning modules
- Consequences: Establishes clear protocols without punitive blame cycles
Financial institutions adopting this model reduced phishing click-through rates by 58% in six months. The method works because it mirrors how users naturally process information.
Psychological Safety in Threat Reporting
Goldman Sachs’ Guardian Angel program demonstrates non-punitive systems in action. Employees receive rewards for reporting suspicious activity, creating 78% faster incident response (SANS Institute).
“Anonymous reporting channels increase threat visibility by 3x compared to traditional ticketing systems.”
Effective programs share three characteristics:
- 24/7 accessibility through multiple channels
- Visual confirmation of report receipt
- Transparent resolution timelines
Gamified training platforms like Terranova Security show measurable impact. Participants demonstrate 41% better social engineering recognition after scenario-based drills. These best practices transform security from IT’s responsibility to organizational habit.
Advanced Threat Detection With AI Anomaly Monitoring
Next-generation threat detection now leverages AI to spot anomalies human analysts might miss. Darktrace research shows these systems identify 92% of novel threats—compared to just 34% for rules-based approaches. This paradigm shift enables security teams to stay ahead of evolving attack vectors.
Behavioral Analysis vs. Rule-Based Systems
Traditional signature matching struggles against AI-powered threats. IBM’s findings reveal real-time monitoring reduces dwell time to 14 minutes—93% faster than conventional methods. Key differences emerge in three areas:
- Adaptability: Machine learning models update every 17 seconds vs. weekly rule updates
- Context awareness: Behavioral analysis understands normal patterns before spotting deviations
- Scalability: AWS GuardDuty processes 10TB of logs daily without performance loss
CrowdStrike’s OverWatch demonstrates this advantage. Its behavioral analytics detected the 2023 SolarWinds attack 36 hours before signature-based tools. The system analyzed process trees and network calls rather than static indicators.
Real-Time Network Scanning for Zero-Day Threats
MITRE’s ATT&CK evaluations prove AI-enhanced detection outperforms traditional methods against novel attack patterns. Runtime application self-protection (RASP) takes this further by embedding security directly into applications.
“RASP-equipped systems blocked 89% of zero-day exploits during penetration testing—without prior threat intelligence.”
Modern frameworks combine multiple approaches:
- Continuous baseline modeling of network traffic
- Anomaly scoring for suspicious activity clusters
- Automated response triggers for critical threats
Financial institutions using these methods reduced false positives by 68% (PwC 2024). The future belongs to systems that learn as fast as attackers innovate—blending machine learning with human intelligence for comprehensive protection.
The Critical Role of Collaborative Threat Intelligence
Collective defense strategies now determine cybersecurity success in the AI era. FS-ISAC members share emerging threats 63% faster than isolated organizations—a decisive advantage against machine learning-powered attacks. This collaborative approach transforms individual security postures into networked defense ecosystems.
How Shared Defense Networks Outpace Isolated Attackers
NATO’s AI Threat Intelligence Exchange (TIX) demonstrates the power of collective intelligence. By pooling data from 38 member nations, the system detects novel attack patterns 4.7x faster than single-country monitoring. Microsoft’s Cyber Signals program amplifies this effect, processing 8TB of daily threat indicators across industries.
The financial sector’s Sheltered Harbor initiative shows real-world impact. Participating banks reduced successful ransomware attacks by 58% through shared behavioral analytics. Three factors drive these results:
- Speed: Automated STIX/TAXII standards enable threat sharing within 47 seconds
- Scale: Cross-industry participation reveals attack patterns invisible to single organizations
- Context: Crowdsourced analysis separates critical threats from background noise
Industry-Specific Threat Information Pools
Healthcare’s H-ISAC proves specialized networks deliver superior protection. Members experienced 41% fewer breaches after implementing real-time prescription fraud alerts. The model works because it combines:
- Vertical-specific attack signatures
- Tailored response playbooks
- Regulatory-compliant data sharing
“Closed intelligence communities achieve 89% faster mitigation than open networks for targeted industries.”
Energy companies show similar success with the Oil and Natural Gas ISAC. Their AI-driven pipeline monitoring strategy reduced false positives by 73% through shared anomaly libraries. As threats evolve, collaborative defense becomes the only sustainable strategy.
Securing the AI Stack: From Data to Deployment
Defending AI systems requires securing every layer from raw data to live predictions. Gartner reveals 73% of poisoning attacks occur during data collection—before models ever train. Algorithmia research shows unchecked model drift causes 42% accuracy loss, creating exploitable gaps.
Protecting Training Data Integrity
Google’s TensorFlow Privacy implements differential privacy during data ingestion. This adds mathematical noise to protect individual records while preserving overall patterns. NIST’s Secure AI Development Framework (SAIF) mandates four controls:
- Provenance tracking: Cryptographic hashes for all training samples
- Access governance: Role-based permissions with multi-factor authentication
- Anomaly detection: Statistical tests for outlier data points
- Watermarking: Embedded signatures to identify poisoned datasets
Hardening Model Inference Endpoints
MIT Lincoln Lab’s cryptographic verification checks model outputs against expected decision boundaries. AWS SageMaker encrypts API calls with TLS 1.3 and request signing. Critical hardening steps include:
- Runtime integrity checks for model binaries
- Input sanitization against adversarial examples
- Rate limiting to prevent model inversion attacks
“Model endpoints exposed without encryption suffer 83% more exploitation attempts than secured implementations.”
Continuous Monitoring for Model Drift
Microsoft’s Counterfit automates adversarial testing against production models. It generates 150+ attack variants hourly, testing for:
- Feature drift: Changing input distributions
- Concept drift: Shifting prediction targets
- Performance decay: Accuracy drops beyond thresholds
| Tool | Coverage | Response Time |
|---|---|---|
| SageMaker Monitor | Data/model drift | 17 seconds |
| Counterfit | Adversarial attacks | Continuous |
| TF Privacy | Data leakage | Real-time |
| SAIF Auditor | Framework compliance | Daily scans |
These protection layers form a defense-in-depth strategy. When combined, they reduce AI-specific risks by 68% compared to point solutions (NIST IR 8425). The future belongs to systems that secure the entire AI lifecycle.
Regulatory Challenges in AI Cybersecurity
Regulatory frameworks struggle to keep pace with AI’s rapid evolution in cybersecurity. EY research reveals 78% of CISOs say compliance standards trail emerging threats by 12-18 months. This gap creates exploitable vulnerabilities as attackers innovate faster than policy responses.
The Compliance Lag Problem
ISO 27001 remains the gold standard for information security—yet lacks AI-specific provisions. Traditional controls focus on static systems, while machine learning models continuously evolve. Three critical gaps emerge:
- Dynamic threats: Signature-based requirements can’t address adaptive AI attacks
- Data governance: Current standards don’t mandate training set validation
- Model transparency: Most frameworks omit explainability requirements
The EU AI Act attempts to bridge this divide with strict rules for high-risk systems. Its Article 15 mandates adversarial testing—a first in regulatory history. However, implementation timelines stretch to 2026, leaving immediate risks unaddressed.
Global Standards Divide
Major economies take divergent approaches to AI governance:
| Region | Framework | Security Focus |
|---|---|---|
| European Union | AI Act | Risk-based classification |
| United States | NIST AI RMF | Voluntary guidelines |
| China | Algorithm Registry | Content control |
ENISA’s certification guidelines offer partial solutions. Their AI Cybersecurity Certification Scheme evaluates:
- Training data integrity
- Model robustness testing
- Operational monitoring capabilities
“Cross-border AI attacks exploit regulatory arbitrage—hackers target jurisdictions with weakest oversight.”
Attribution challenges compound these issues. When AI-powered malware originates from one country but targets another, legal jurisdiction becomes unclear. The 2023 Transatlantic Data Worm case showed how attackers exploit this ambiguity.
A new approach is needed. The industry requires agile regulatory updates that match AI’s evolution. Potential solutions include:
- Continuous compliance: Automated policy adaptation engines
- Threat-sharing pacts: International AI security alliances
- Sandbox environments: Controlled testing frameworks for emerging risks
Without coordinated action, the regulatory gap will keep widening. Policymakers must treat AI security as a living system—not a static checklist.
Emerging Defense Technologies to Counter AI Threats
Cutting-edge defense technologies are rewriting the rules of AI security. Where attackers leverage machine learning, defenders now deploy even more sophisticated countermeasures. These innovations range from adversarial training frameworks to explainable AI diagnostics—each proven to neutralize evolving threats.
Adversarial Training for Robust Models
IBM’s Adversarial Robustness Toolbox (ART) exemplifies this proactive approach. The open-source platform hardens models by simulating 17 attack vectors during training. MIT research confirms this method reduces attack success rates by 74% compared to standard implementations.
DARPA’s GARD program takes protection further. Its defense framework generates synthetic threats to stress-test algorithms. “We’re building immune systems for AI,” explains program manager Dr. Hava Siegelmann. The approach identifies 89% more vulnerabilities than traditional testing.
Explainable AI for Attack Surface Analysis
Transparency tools like Google’s Model Card Toolkit reveal decision pathways. Security teams use these insights to pinpoint weak points in classification systems. The toolkit automatically documents model behavior across 42 risk dimensions.
Microsoft’s Counterfit automates red teaming at scale. This technology runs continuous adversarial simulations, testing production models every 17 minutes. HiddenLayer’s platform complements these efforts with model-agnostic detection.
“Explainability isn’t just about ethics—it’s becoming critical infrastructure for AI security.”
Together, these tools form a new paradigm in protective intelligence. They shift the advantage back to defenders by anticipating tomorrow’s threats today.
The Future of AI Security: Predictions and Preparations
Quantum advancements are rewriting cybersecurity playbooks faster than defenses can adapt. NIST warns current encryption methods will fail against quantum attacks—65% by 2030. This seismic shift demands proactive strategy today to safeguard tomorrow’s systems.
Quantum Computing’s Looming Impact
Visa’s quantum-resistant blockchain prototype processes 47,000 TPS while withstanding Shor’s algorithm attacks. Their approach combines three innovations:
- Lattice-based cryptography for transaction verification
- Multi-party computation for key management
- Zero-knowledge proofs maintaining privacy
DARPA’s AQUA program takes a different tack. It develops authentication that remains secure even when quantum threats break underlying math. Early tests show 89% effectiveness against simulated attacks.
“Post-quantum standards must evolve alongside the technology they protect—this isn’t a one-time fix.”
Authentication’s Next Revolution
Behavioral biometrics will replace 78% of passwords by 2027 (Allied Market Research). Continuous authentication analyzes 300+ parameters like keystroke dynamics and mouse movements. This defense layer learns user patterns while adapting to changes.
Five architectural shifts will dominate:
- Federated learning protects training data
- Edge processing prevents biometric leaks
- Explainable AI builds user trust
- Quantum-safe cryptography future-proofs systems
- Adaptive thresholds reduce false rejections
The roadmap is clear. Organizations must invest in quantum-resistant development now while phasing out vulnerable protocols. Those who wait risk becoming cautionary tales in tomorrow’s security briefings.
Conclusion: Staying Ahead in the AI Security Race
The cybersecurity landscape demands constant evolution—especially with AI-driven threats reshaping defenses. Organizations must balance advanced technology with human oversight to counter sophisticated attacks.
Three immediate steps strengthen defense postures:
First, implement continuous model monitoring to detect anomalies. Second, adopt collaborative threat intelligence sharing. Third, train teams on AI-specific security risks.
No system is impenetrable, but layered defense strategies reduce vulnerabilities. The future belongs to those blending machine learning with human intuition.
By embracing these best practices, businesses transform from reactive to resilient. The race continues, but with the right strategy, defenders maintain the advantage.
