Login
Register
Submit a Paper
Propose a Special lssue
Open Access
REVIEW
Ethical Implications of AI-Driven Ethical Hacking: A Systematic Review and Governance Framework
Department of Cyber Security, Faculty of Computing, Nigerian Army University Biu, Biu, 603108, Nigeria
* Corresponding Author: Hossana Maghiri Sufficient. Email:
Journal of Cyber Security 2025, 7, 239-253. https://doi.org/10.32604/jcs.2025.066312
Received 04 April 2025; Accepted 23 June 2025; Issue published 14 July 2025
View Full Text
Download PDFAbstract
The rapid integration of artificial intelligence (AI) into ethical hacking practices has transformed vulnerability discovery and threat mitigation; however, it raises pressing ethical questions regarding responsibility, justice, and privacy. This paper presents a PRISMA-guided systematic review of twelve peer-reviewed studies published between 2015 and March 2024, supplemented by Braun and Clarke’s thematic analysis, to map four core challenges: (1) autonomy and human oversight, (2) algorithmic bias and mitigation strategies, (3) data privacy preservation mechanisms, and (4) limitations of General Data Protection Regulation (GDPR) and the European Union’s AI Act in addressing AI-specific risks, alongside the imperative to balance automation with expert judgment. While artificial intelligence has greatly enhanced efficiency and reduced hazard detection, its actual lack of transparency and dependence on past data may exacerbate inequality in its approach, adversely affecting under-resourced sectors such as rural healthcare systems and small enterprises. For example, a 2024 University of Illinois Urbana-Champaign study demonstrated that generative pre-trained transformer 4 (GPT-4) agents could autonomously exploit 87% of one-day vulnerabilities in a small-business web application, illustrating how AI-driven attacks can rapidly overwhelm under-resourced enterprises without dedicated security teams. To promote equity and accountability, we advocate embedding bias-aware data curation toolkits (e.g., IBM AI Fairness 360, Google What-If Tool, Microsoft Fairlearn, Aequitas) at the data-ingestion stage and adopting adaptive governance models with continuous impact assessments and human-in-the-loop checkpoints. Our findings inform a pragmatic framework for harmonizing regulatory, technical, and organizational controls, and we outline a research agenda focused on adaptive oversight, privacy-enhancing policies, and multidisciplinary collaboration to guide responsible deployment of AI in cybersecurity.Keywords
AI in cybersecurity; ethical hacking; algorithmic bias; privacy-preserving AI; dual-use dilemma; human-AI collaboration; regulatory frameworks
Supplementary Material
Supplementary Material FileCite This Article
APA Style
Sufficient, H.M., Mohammed, A.M., Danjuma, B. (2025). Ethical Implications of AI-Driven Ethical Hacking: A Systematic Review and Governance Framework. Journal of Cyber Security, 7(1), 239–253. https://doi.org/10.32604/jcs.2025.066312
Vancouver Style
Sufficient HM, Mohammed AM, Danjuma B. Ethical Implications of AI-Driven Ethical Hacking: A Systematic Review and Governance Framework. J Cyber Secur. 2025;7(1):239–253. https://doi.org/10.32604/jcs.2025.066312
IEEE Style
H. M. Sufficient, A. M. Mohammed, and B. Danjuma, “Ethical Implications of AI-Driven Ethical Hacking: A Systematic Review and Governance Framework,” J. Cyber Secur., vol. 7, no. 1, pp. 239–253, 2025. https://doi.org/10.32604/jcs.2025.066312
Copyright © 2025 The Author(s). Published by Tech Science Press.This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Downloads
Citation Tools
