7 minutes reading
Prior to AI taking over, the majority of cyber attacks were the result of human authorship. However, with the rise of machine-assisted creation, machines can now generate an increasing number of cyber-related events. AI in cybersecurity is rapidly transforming both digital defense and cybercrime, as AI technologies used in defending or attacking systems through generative text are changing the cybersecurity landscape and accelerating the speed at which cybercriminals can launch attacks. A report from the National Institute of Standards and Technology (NIST)suggests that AI-powered cyber threats will increase significantly as criminals adopt automated processes.
The Rise of Generative AI in Cybersecurity
Generative AI refers to artificial intelligence systems capable of creating content such as text, images, voice, and code. While these technologies bring enormous productivity benefits, they also introduce new security challenges.
Cybercriminals are increasingly leveraging generative AI in cybersecurity to:
- Faster writing of malware code
- Highly personalized phishing emails
- Automate the reconnaissance of targets
- Create deepfakes of people’s voices or videos
- Launch scalable attacks using cybertools
For instance, attackers can use the AI to create recordings in the sound of a CEO’s voice to trick employees into transferring money or confidential information.
As AI continues to evolve, organizations are also exploring how AI can improve email security and threat detection. You can read more about this in How AI is Transforming Email Trust and Protection.
Book a Free Demo Call with Our People Security Expert
The Evolving Cyber Threat Landscape
With the rise of artificial intelligence being used to commit cybercrime, the cyber threat landscape is rapidly changing and becoming more complex than ever before.
Historically, cyber criminals required significant levels of skill and time (technical knowledge) to conduct attacks. However, generative AI has reduced this requirement; therefore, those with limited technical ability can now think like cybercriminals and launch sophisticated attacks using AI-based tools.
Some emerging threats include:
Phishing Emails Made by AI
AI-based tools can produce email content that looks so authentic, it is hard to tell the difference between an email written by an executive or colleague and a phishing message trying to steal your personal information.
Automatically Generated Malware
The use of generative AI by cybercriminals enables them to create new versions of malware extremely quickly, thereby evading traditional detection methods.
Deepfakes
Deepfake technology is an AI-based technology that allows you to create realistic video and audio impersonations for a variety of purposes, including identity theft and phishing attacks.
Recent industry reports highlight how AI-enabled scams and phishing attempts are increasing globally. For instance, a recent cybersecurity analysis shows that data breaches and phishing attacks surged significantly in 2025 due to AI-driven fraud tactics.
These changes to the cyber threat environment pose an enormous increase in cyber risk for all organizations, particularly those relying on traditional security controls.
The Role of AI in Cybersecurity Defense
AI is giving attackers the power they need to attack the networks, but it is also giving them more ability to defend themselves against these types of attacks as well. The role of AI in cybersecurity to support cyberdefense is rapidly becoming critical for identifying and combating emerging cyber threats.
Due to the ability to identify and detect emerging threats, security teams can utilize AI-enabled systems for the following functions:
- Identify unusual patterns within network activity
- Identify irregular types of behavior by users
- Determine when a cyberattack may occur
- Automate the process of responding to cyber events
Machine Learning (ML) algorithms enable analysis of millions of potential security incidents in a matter of seconds, whereas a cyber analyst cannot perform the analysis without the assistance of an intelligent system or machine.
By integrating AI-enabled defensive systems, organizations can dramatically reduce the time spent responding to internet intrusions. For example, using AI-enabled threat detection systems, organizations may be able to detect an intrusion in a matter of minutes versus several days using a manual approach.
Agentic AI in Cybersecurity: The Next Phase
A recent trend in computer security involves the development of agentic AI in cybersecurity. Agentic AIs are computer systems that operate autonomously. In other words, they can operate without having to rely on or be supervised by humans at all times.
Agentic AIs can be used for various purposes related to cybersecurity, including:
- Detecting and responding to cyber threats on an ongoing automated fashion
- Investigating suspicious behaviors such as account logins, file changes, and more, using logs collected and analysed by the AIs themselves
- Automatically blocking any malicious access attempts in real-time
- Creating automated responses based on changing cyber threats and associated services
There is concern about agentic AIs being used by cybercriminals to conduct autonomous cyberattacks that are able to learn and adapt as they are executed. Therefore, the dual-use of AI for both beneficial and non-beneficial purposes will necessitate further examination of cybersecurity governance.
How Organizations Can Reduce Cyber Risk
The rise of AI technology has also created new cyber risks, so organizations need to take proactive measures with a robust cybersecurity system in place.
This can be accomplished by taking a few key actions, such as:
1. Utilizing AI Security
Organizations can use AI-powered threat detection systems to detect anomalies and identify breaches.
2. Employee Training
Employee training is one of the most efficient ways to minimize cybersecurity threats, such as phishing emails that are generated by AI. Employees should be able to identify and report these emails.
3. Adopting Zero Trust Security
Using a zero-trust model means that you are not automatically trusting any users or devices; this minimizes your chances of an internal breach.
4. 24/7 Threat Monitoring
Security personnel need to continuously monitor their networks to stay aware of the ever-evolving threat landscape.
Conclusion
With the significant rise of artificial intelligence, the cybersecurity industry is currently undergoing substantial change. The use of AI can enhance the ability of cybersecurity professionals to defend against possible threats. However, it equally provides cybercriminals with the ability to conduct quicker, more effective, and more advanced attacks on the system.
The increasing use of generative AI and the continued development of agentic AI in cybersecurity means that companies must remain vigilant against cyber threats. Companies that do not keep pace with evolving threats will expose themselves to substantial cybersecurity risks.
Through investments in artificial intelligence-based security solutions, improved employee education regarding cybersecurity issues and strong overall cybersecurity strategies, companies can proactively position themselves against AI-based threats.
FAQs
How does generative AI impact cyber attacks?
Generative AI can be used by cybercriminals to automate sending out phishing emails, accelerate their creation of malicious software, and develop more efficient deepfake identities; thus increasing the sophistication of cyber attacks.
What is agentic AI in cybersecurity?
Within the area of cybersecurity, agentic AI means using autonomous (i.e. self-operating) AI systems that are capable of independently identifying and responding to cyber threats without the need for continuous human supervision.
Purva is a Technical Content Strategist at Threatcop with an MBA in Business Analytics, specializing in SEO-driven content and technical editing across IT and digital domains, and is the author of the book From a Daughter’s Eye.
