AI-Driven Cyber Threats Are Outpacing Defense Capabilities

News provided by

Boston Consulting Group (BCG)

Dec 18, 2025, 00:01 ET

  • BCG's global survey finds 60% of companies may have faced AI-enabled attacks in the past year, but only 7% are using AI in defense
  • 53% of executives now rank AI cyber threats among their top three organizational risks
  • Only 5% of companies report a significant increase in cybersecurity budget due to AI attacks while 69% report difficulty in hiring AI-cybersecurity talent

BOSTON, Dec. 18, 2025 /PRNewswire/ -- A new report from Boston Consulting Group (BCG) reveals that artificial intelligence is fundamentally reshaping the cybersecurity landscape and exposing major gaps in corporate defenses. Despite growing awareness of the risks, the pace of cyber defense adoption is failing to keep up with the speed and sophistication of AI-driven attacks.

The report, AI Is Raising the Stakes in Cybersecurity, is based on a global survey of 500 senior leaders across industries and geographies and finds that 60% of companies believe they experienced an AI-powered cyberattack in the past year. Only 7% have so far deployed AI-enabled defense tools, though 88% plan to do so.

"AI is enabling a new era of cyber threats that are faster, more deceptive, and more scalable," said Shoaib Yousuf, a BCG managing director and partner, and coauthor of the report. "But most companies are still stuck with outdated tools and underfunded strategies, leaving them highly exposed."

AI Is Accelerating Offense Faster Than Defense

The report outlines how AI is enhancing attackers' capabilities across a range of tactics, from ransomware and phishing to voice cloning and deepfake video fraud. Among the case studies:

  • A $25 million fraud incident at a multinational engineering firm triggered by a deepfake video call impersonating the CFO.
  • An AI-generated robocall campaign spoofing voter communications, leading to a $1 million regulatory fine.
  • A ransomware attack on a healthcare provider that encrypted hospital systems and delayed surgeries.

Yet organizational response has been sluggish:

  • Just 5% of companies have significantly increased cybersecurity budgets due to AI.
  • 69% report difficulty hiring AI-cybersecurity talent.
  • Only 25% of existing AI-enabled defense tools are considered advanced; a growing concern as agentic AI accelerates threat evolution.

Threats Will Evolve and Defenses Must Keep Pace

Executives foresee that the nature of AI-powered cyberattacks will continue to evolve rapidly, requiring a constant recalibration of defenses. They consider the most critical AI-cyber threats to their organization over the next two years as:

  • AI-enabled financial fraud (43%)
  • AI-powered social engineering (39%)
  • Attackers using AI to accelerate vulnerability discovery (28%)
  • AI-powered malware that learns and adapts to bypass defenses (26%)

The report finds high risk exposure across all industries, with healthcare and government among the most vulnerable.

Urgent Need for CEO and CISO Alignment

The report calls for a dual leadership model to close the defense gap. CEOs must prioritize cybersecurity and AI at the board level, while CISOs should accelerate deployment of high-impact, AI-enabled use cases.

Recommendations include:

  • Set a Board-backed AI-Cyber mandate and fund it accordingly
  • Deploy AI in defenses where it changes the risk curve fastest
  • Secure the AI systems the organization is building
  • Build cyber agility with multi-vendor architecture

"The era of passive cyber defense is over," said Vanessa Lyon, global director of BCG's Center for Leadership in Cyber Strategy, and coauthor of the report. "Attackers are moving at machine speed. The only winning strategy is to meet autonomy with autonomy, through intelligence, leadership, and commitment. This is the moment when organizations decide whether they will shape the AI-cyber landscape or be shaped by it."

Download the full publication here:
https://www.bcg.com/publications/2025/ai-raising-stakes-in-cybersecurity

Media Contact:
Eric Gregoire
+1 617 850 3783
[email protected]

BCG's Center for Leadership in Cyber Strategy
As digital transformation accelerates, it opens new frontiers for innovation, growth, and competitive advantage—but also heightened vulnerabilities. Cyber is no longer just a technical concern; it's a strategic imperative. Organizations must evolve their cyber posture in tandem with digital progress to safeguard trust and enable resilience. 

BCG's Center for Leadership in Cyber Strategy applies bold, business-first thinking to reframe cybersecurity as integral to business strategy—not an afterthought. We embed "security by design" into how leaders shape, evaluate, and execute priorities from the outset. Drawing on BCG's global network of cybersecurity, risk, and strategy experts, we help executives cut through technical complexity and fear-driven narratives. By reframing digital risk in business and economic terms, we empower confident decision-making that turns resilience into a source of lasting competitive edge—enabling organizations to innovate, adapt, and emerge stronger through disruption. More information on BCG's Center for Leadership in Cyber Strategy can be found here

About Boston Consulting Group
Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we work closely with clients to embrace a transformational approach aimed at benefiting all stakeholders—empowering organizations to grow, build sustainable competitive advantage, and drive positive societal impact.

Our diverse, global teams bring deep industry and functional expertise and a range of perspectives that question the status quo and spark change. BCG delivers solutions through leading-edge management consulting, technology and design, and corporate and digital ventures. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, fueled by the goal of helping our clients thrive and enabling them to make the world a better place.

SOURCE Boston Consulting Group (BCG)

21%

more press release views with 
Request a Demo

Also from this source

When AI Acts Alone: What Organizations Must Know About Managing the Next Era of Risk

When AI Acts Alone: What Organizations Must Know About Managing the Next Era of Risk

As autonomous AI agents begin to operate across critical business functions, organizations face a sharp inflection point. These systems are no longer ...
US Luxury and Exotic Car Market Set to Reach Up to $215 Billion by 2035--Nearly Twice Its Current Size

US Luxury and Exotic Car Market Set to Reach Up to $215 Billion by 2035--Nearly Twice Its Current Size

The US luxury and exotic car market is projected to grow from $110 billion today to between $180 and $215 billion by 2035. The strongest growth is...
More Releases From This Source

Explore

High Tech Security

High Tech Security

Computer & Electronics

Computer & Electronics

Artificial Intelligence

Artificial Intelligence

Computer Software

Computer Software

News Releases in Similar Topics