Five worthy reads: AI-Powered cybercrime, the next big threat to enterprises

Five worthy reads is a regular column on five noteworthy items we have discovered while researching trending and timeless topics. This week, we are exploring AI-powered cybercrime, the next big threat to enterprises, and how organizations can prepare for this evolving risk landscape.

As artificial intelligence (AI) is increasingly integrated into everyday life and business environments, it's not only revolutionizing innovation and productivity , it's also redefining the threat landscape. Cyberattackers are now using AI to deploy faster, smarter, and more evasive attacks that test the limits of traditional security controls. From artificially intelligent phishing emails to deepfake impersonations and self-evolving malware, these smart threats are increasing. In this blog, we'll discuss how AI is being used for attack, the threat it poses to organizations, and what we can do to get ahead of this changing war.

The growing trend of AI and why we should be prepared for the attack:

The rapid uptake of artificial intelligence is transforming industries—but also equipping cybercriminals with powerful tools. More than 35% of phishing attacks in 2024, for instance, used generative AI to create highly targeted messages that were impossible to distinguish from genuine ones, according to Microsoft Security Report, 2024 . These machine-learning-based threats are quicker, more dynamic, and more effective in evading conventional security filters, compelling organizations to restructure their defense mechanisms.

What makes this trend more alarming is the speed with which AI can automate attacks. One AI-powered malicious botnet can scan and exploit thousands of vulnerabilities in mere minutes, which would take human hackers days or weeks to do. Gartner expects that through 2026, 40% of data breaches will be attributed to inadequate AI governance or unmanaged AI tools. To remain safe, companies have to spend on AI-powered threat detection, reskill employees around the latest threats, and have strict AI usage guidelines in place to protect against both internal and external actors.

Here are our top reads to help you understand how AI-powered cybercrime is emerging as the next big threat to enterprises.

AI-Powered Cyber Threats Target 72% of Indian Organisations, Reveals Report 

A Fortinet–IDC report recently points out that 72% of Indian organizations have been victims of AI-driven cyberattacks in the last year. Cyberattackers are using AI to initiate advanced attacks like credential stuffing, deepfake impersonation, AI-created phishing, and dynamic malware. These new threats are hard to detect and tend to target human mistakes and vulnerable identity systems. 14% of organizations are confident about defending themselves against such attacks, and most have inadequate detection and response mechanisms in place. The report highlights that the imperative for AI-based, predictive cybersecurity measures with an emphasis on identity security and cloud resilience.

CISOs brace for rise in AI-driven cyber attacks & domain threats

As per the CSC's CISO Outlook 2025 report, almost all CISOs are expecting to experience an increase in AI-enabled cyberattacks and domain-based threats within the next three years. New attack methods like domain-generation algorithms (DGAs), ransomware, domain hijacking, and DNS exploitation are causing severe concern among security leaders. Overwhelmingly, 98% of CISOs expect to see more incidents, and 87% of them name AI-enabled DGAs as a major threat. In spite of this, merely 7% of companies are highly confident that they can ward off these threats. The report stresses the importance of AI governance, real-time domain monitoring, improved tools, and improved interaction with domain security experts.

How firms can use AI to counter the rising AI threats

The article from TechCircle highlights how businesses can use AI to counter the surging tide of AI-based cyber attacks. While criminals employ AI for advanced intrusions, companies are recommended to embrace AI-based defense systems like real-time threat detection, automated response systems, and anomaly monitoring. Experts point to the importance of including AI governance in upskilling efforts so that the team can effectively deal with risks. Adopting Zero Trust architectures, strong identity and access controls, and ongoing risk assessments are envisioned are imperative measures.

Indian enterprises' cybersecurity budget lags even as AI-driven threats rise: Cisco ..

A Cisco report shows that while 98% plan IT upgrades, only 54% allocate over 10% of their IT budgets to cybersecurity. Despite 95% facing AI-related incidents, just 66% believe their workforce understands these threats. With a 92% talent shortage, Cisco urges urgent investment in identity intelligence, cloud security, and employee training. Meanwhile, experts at Stack 2025 highlighted AI’s double-edged role in cybersecurity—enhancing defense but also arming attackers. They emphasized that Zero Trust, employee training, and threat intelligence sharing remain essential. Tech leaders called for balanced AI adoption alongside core security controls and stronger public-private collaboration.

AI is the greatest threat—and defense—in cybersecurity today. Here’s why.

The McKinsey blog highlights that AI today has a two-way role in cybersecurity, being used as the greatest threat and the best defense. Cybercrime is increasingly using AI to carry out phishing attacks, produce deepfakes, author malware, and utilize weaknesses at never-before-seen speeds. Some attacks take place in less than an hour, with minimal space for intervention. On the security front, organizations are leveraging AI to automate threat detection, incident response, and recovery processes. Yet, McKinsey cautions that AI tools in themselves are not sufficient, and firms must build solid cybersecurity foundations with asset visibility, identity control, and vulnerability management. Everything depends on how AI is responsibly and strategically used.

While AI is accelerating the scale and complexity of cyber threats, it also offers powerful capabilities for defense when used responsibly. Organizations must not only invest in AI-driven tools but also strengthen foundational security practices to fully leverage AI’s potential. A balanced, well-governed approach that combines technology, talent, and strategy are essential to stay ahead of evolving threats. Cyber resilience in the AI era will depend on proactive adaptation, cross-functional collaboration, and continuous learning. Those who embrace AI with caution and clarity will lead the way in securing their digital future.

As AI-powered cyber threats continue to evolve in scale and sophistication, enterprises must prioritize proactive defense strategies, invest in robust security solutions, and foster a culture of cyber resilience. By staying informed, leveraging advanced technologies, and continuously assessing risk, organizations can turn the tide against these digital threats and secure their future in an increasingly intelligent world.