AI’s Rapid Rise Sparks New Cyber Threats
Cybersecurity professionals are racing to defend against AI threats while simultaneously rushing to adopt AI defensive tools.
To help you understand the trends surrounding AI and other new technologies and what we expect to happen in the future, our highly experienced Kiplinger Letter team will keep you abreast of the latest developments and forecasts. (Get a free issue of The Kiplinger Letter or subscribe.) You'll get all the latest news first by subscribing, but we will publish many (but not all) of the forecasts a few days afterward online. Here’s the latest…
With the rapid rise of artificial intelligence, a sea change in cybersecurity is underway. As new threats emerge from generative AI adoption, AI-enabled security tools are also fortifying defenses.
AI’s rise has prompted higher spending on more advanced IT security. In 2025, security spending is set to grow by 12.5% in the U.S. versus last year, hitting $131 billion, according to technology market research firm IDC. Global growth will be similar, led by large companies, but even small businesses are spending more. The top spending sectors are finance, government, telecom and health care, looking to buy tools to secure cloud apps, manage digital identity and analyze cyber threats.
From just $107.88 $24.99 for Kiplinger Personal Finance
Become a smarter, better informed investor. Subscribe from just $107.88 $24.99, plus get up to 4 Special Issues
Sign up for Kiplinger’s Free Newsletters
Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.
Profit and prosper with the best of expert advice - straight to your e-mail.
Attacks are worsening across the board, with an increase in speed, scale and sophistication. AI is supercharging phishing emails and voice clones through AI-created text and audio that often trick victims into sharing private info or clicking on malware. Ransomware is on the rise, too. Cyberthreats are growing across the globe. China’s cyber espionage, including targeted attacks, is surging. Iran is using AI to find security flaws to exploit and to spread misinformation online. That’s sure to increase. Russia, too, is using AI for attacks and digital propaganda.
Physical infrastructure remains a ripe target. This includes chemical plants, electric grids, dams, hospitals, transportation systems and nuclear plants. A recent example is China’s Salt Typhoon intrusion into U.S. telecom networks.
Employee use of AI, much of it unsanctioned, gives security pros heartburn. Start with the risk of divulging company secrets as workers share data with public AI chatbots, which may be insecure. Software from Palo Alto Networks and others tracks AI use in a network to protect data and block unapproved AI apps. Other AI threats include “prompt injection” attacks, when an AI chatbot is tricked to override built-in policies, giving access to unauthorized company data or systems. “Hallucinations,” which are inaccurate but true-sounding responses, also pose a security risk.
AI has big promise for improving cybersecurity software, but it brings risk, too. Some things AI can already do: Find security flaws in software and help patch them. Develop software that resists security flaws. Monitor threats, pinpoint real dangers and alert human cyber pros. AI security chatbots can give security staff detailed answers on threats or company policies to help them solve issues.
One of the most exciting developments is “AI agents” that can do security tasks autonomously. Built by companies such as Amazon, Microsoft, Google, CrowdStrike, OneTrust and Radiant Security, the tools can patch security flaws, thwart data breaches, track insider threats, simulate attacks and more. Another use for autonomous agents is issuing employee log-in credentials to a piece of software via email. A tedious task that is now done manually by IT staff.
But there’s fear that autonomous tools will make mistakes or go rogue. These AI agents need to be secure themselves, with clear guardrails and regular audits. “Behind this incredible era of agentic AI are intricate security considerations that organizations must prepare for today,” said Hammad Rajjoub, director of security at Microsoft, at a recent conference. There are already plans for deploying AI agents to guard other agents.
Despite the new AI threats, basic cybersecurity precautions still mitigate risks for businesses. Use strong usernames and passwords, plus another factor, such as a one-time PIN or fingerprint. Regularly update and patch software. Closely vet security vendors and new AI tools. Minimize data stored. Provide regular security training to staff. Prepare a security incident response plan and regularly test it.
This forecast first appeared in The Kiplinger Letter, which has been running since 1923 and is a collection of concise weekly forecasts on business and economic trends, as well as what to expect from Washington, to help you understand what’s coming up to make the most of your investments and your money. Subscribe to The Kiplinger Letter.
Related Content
- What Is AI? Artificial Intelligence 101
- How AI Can Guide Introverts to Success in Professional Services
- AI in Accounting: The Future Is Here
- The AI Doctor Coming to Read Your Test Results
- AI Is Missing the Wisdom of Older Adults
-
How Prices Have Changed in Trump's First YearTrump campaigned on bringing prices down for Americans. Here's where prices stand one year into his second term.
-
New California Wealth Tax for 2026: What's Happening NowState Taxes California has considered taxing wealth before, but the latest proposal seems to be different.
-
Your 5-Step Guide to Discovering Whether a Lawyer Is ShadyResearch shows you can't rely on some state bar websites to vet a lawyer you're considering hiring. Here's how to check out a lawyer before you hire.
-
Trump Reshapes Foreign PolicyThe Kiplinger Letter The President starts the new year by putting allies and adversaries on notice.
-
How to Plan a (Successful) Family ReunionFrom shaping the guest list to building the budget, here's how to design a successful and memorable family reunion.
-
Congress Set for Busy WinterThe Kiplinger Letter The Letter editors review the bills Congress will decide on this year. The government funding bill is paramount, but other issues vie for lawmakers’ attention.
-
Is Direct Primary Care Right for Your Health Needs?With the direct primary care model, you pay a membership fee for more personalized medical services.
-
Smart Ways to Share a Credit CardAdding an authorized user has its benefits, but make sure you set the ground rules.
-
Billed 12 Hours for a Few Seconds of Work: How AI Is Helping Law Firms Overcharge ClientsThe ability of AI to reduce the time required for certain legal tasks is exposing the legal profession's reliance on the billable hour.
-
The Kiplinger Letter's 10 Forecasts for 2026The Kiplinger Letter Here are some of the biggest events and trends in economics, politics and tech that will shape the new year.
-
Tip: Ways to Track Your Credit Card RewardsHere are the best strategies and apps to help you stay current with your credit card rewards.
