Why Cybersecurity Threats Are Growing
· Time
Cybersecurity threats move at an overwhelming pace—and often go unnoticed. The fact that these are invisible threats that are easily overshadowed by actual physical dangers makes them even more insidious. Fueled by complacency and our tendency to stick with familiar routines, these threats are becoming more dangerous every day.
Despite several high-profile breaches over the past year, many organizations still treat cybersecurity as a compliance requirement rather than an operational imperative. But this approach can be costly. Worldwide, the average cost of a single data breach is aproximately $4.44 million. In the United States alone, cyberattacks cost companies more than $10 million between March 2024 and February 2025.
Visit forestarrow.help for more information.
[time-brightcove not-tgx=”true”]And yet, too many companies prioritize efficiency and convenience for their employees over cybersecurity best practices. For instance, not enough businesses insist on multi-factor authentication for logging into company computers, with authentication on a separate device being one of the requirements. Using biometrics as part of logins can speed up this process and improve security, but that requires an investment in technology implementation and training to use it.
In deferring to employee convenience, companies are not being proactive enough. They must play offense against the rising tide of attacks from hackers.
As AI advances, companies that fail to treat cybersecurity with the same urgency as physical security risk unprecedented vulnerability.
AI’s impact on cybersecurity
Cybersecurity risks are expected to rise in the near future, in no small part due to AI, which is likely to accelerate the pace of cybersecurity attacks and change the nature of cybersecurity in ways we don’t yet understand.
For instance, deepfakes will become more advanced and prevalent over time. Last year in Hong Kong, an employee was tricked into sending $25 million to fraudsters who used deepfake recreations of the company’s CFO and other colleagues to convince the employee of their authenticity. Although the request was unusual, the employee complied with what appeared to be the instructions of a top executive. Proper training and verification protocols could have stopped the fraud, but without awareness of how advanced these tools have become, employees are at a severe disadvantage.
And in November, the world witnessed the first reported AI-orchestrated cyber-espionage campaign when Anthropic revealed that state-sponsored attackers had bypassed the safety controls of the Claude Code model and used it to scan networks autonomously, exploit vulnerabilities, steal credentials, and exfiltrate data, an operation in which the AI performed 80% to 90% of the work. This event shook the cybersecurity world and highlighted a bigger truth: we still don’t fully grasp the emerging capabilities of advanced AI systems.
At the same time, entirely new forms of AI misuse are emerging. One example is “vibe coding,” in which individuals use AI to generate functional code from simple instructions rather than relying on technical expertise. By lowering the barrier to entry, this capability makes it easier for less skilled actors to carry out increasingly sophisticated cyber operations.
Unlike traditional threats, which rely heavily on human hackers manually probing systems, AI enables autonomous, adaptive, and large-scale operations. Models can scan massive datasets, identify weaknesses in real time, tailor attacks on the fly, and evade detection. This gives hackers the ability to run stealthy, coordinated espionage campaigns across multiple organizations simultaneously, dramatically expanding the global threat. And because AI can evolve mid-operation, signature-based defenses that once anchored cybersecurity are rapidly becoming ineffective.
Cybersecurity is no longer just about defending against human adversaries. It is about confronting intelligent systems that can operate faster and at a greater scale than any individual hacker.
Cybersecurity’s challenging future
For cybersecurity teams, the message is clear: AI must become a central part of the defensive stack. Stronger controls over AI model access, tighter jailbreak prevention, and real-time detection systems capable of identifying machine-driven behavior are now essential. Attackers have already embraced AI; if defenders don’t evolve just as quickly, they’ll be fighting tomorrow’s threats with yesterday’s tools.
Just as important is closer collaboration across private industry, government agencies, and international partners. When dealing with technologies we don’t fully understand, shared intelligence and coordinated strategies are critical. In this new environment, the blend of experienced human judgment and AI’s analytical speed will be our most effective defense against an increasingly autonomous and sophisticated threat landscape.
While the rise of AI-driven attacks can feel overwhelming, it’s important to remember that organizations are not powerless. In fact, many of the best defenses are already within reach; they simply need to be strengthened and consistently applied. The first step forward for corporate leaders is to take their heads out of the sand.