ClearTech Loop: In the Know, On the Move

Fake AI Won’t Innovate — It’ll Infect You | ClearTech Loop Ep. 8 with Rob Bair, Zscaler 

August 19, 2025

Ransomware gangs aren’t just hiding on the dark web anymore. They’re running polished fake AI startups — complete with sleek websites, SEO strategies, and marketing campaigns. And it’s working. People are downloading malware, mistaking it for innovation. 

In this episode of The CISO Slant, Rob Bair, CISO-in-Residence at Zscaler, unpacks the new ransomware economy. He explains how attackers are exploiting the hype cycle, why cybercrime has become professionalized, and why “machine-speed defense” is no longer optional. 

“One of the biggest things that we saw was fake companies standing up, leveraging the power of AI, and then getting you to download their ransomware. And they were really good — polished websites, SEO poisoning, all that stuff,”


— Rob Bair

“One of the biggest things that we saw was fake companies standing up, leveraging the power of AI, and then getting you to download their ransomware. And they were really good — polished websites, SEO poisoning, all that stuff,” Bair says. 

The stereotype of hackers in hoodies overseas is gone. Today’s ransomware crews operate like corporations, complete with customer support desks and native English-speaking operators. “You’re even seeing ransomware crews that are native English speakers. They’re setting up help desks, they’re walking victims through how to pay. This is not the stereotype of guys in Eastern Europe in hoodies anymore — this is professionalized,” Bair explains. 

And while many organizations still rely on manual patch cycles, attackers are moving at machine speed. “We have to get to machine-speed defense. Humans just can’t patch this stuff fast enough. If you’re relying on manual processes, you’ve already lost,” Bair warns. 

The ransomware economy has evolved. The question for CISOs isn’t whether AI will shape security — but whether defenders can adapt fast enough before attackers move past them. 

Quick Takeaways

  • Ransomware gangs are disguising themselves as fake AI startups, complete with polished websites and SEO campaigns. 
  • The stereotype of overseas hackers is outdated — ransomware crews now include native English-speaking operators running customer support desks. 
  • Manual patch cycles are too slow; without automation, organizations are falling behind. 
  • CISOs must adopt machine-speed defense to match attacker velocity. 

About Rob Bair

Rob Bair is CISO-in-Residence at Zscaler, where he advises on emerging threats, resilience strategies, and the evolving role of security leadership in an AI-driven era. Beyond Zscaler, Rob is an investor and advisor at Autonomous Cyber, a board member at Rebel Space Technologies, and an advisory board member at ISARA Corporation and BOSS Controls. 

He has also served as a senior advisor on national security matters, contributing to discussions at the National Security Council. 

Read his Forbes Councils profile → 

About Zscaler

Zscaler is a global leader in cloud security, helping organizations securely transform their networks and applications for a mobile and cloud-first world. The Zscaler Zero Trust Exchange™ platform protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications anywhere. 

Learn more at www.zscaler.com