Cyber threats are evolving rapidly as artificial intelligence begins reshaping how attackers operate online. From realistic voice scams to fake login pages and AI-generated phishing messages, cybercrime is becoming more advanced and difficult to identify.
In an interaction with a business publication, Shane Huntley, CTO of Google Threat Intelligence, said AI is now being used across multiple stages of cyber operations, including malware creation, vulnerability research, social engineering and attack automation. “We are in an arms race,” said Huntley. “What AI is allowing both attackers and defenders to do is operate faster and at greater scale.”
According to Google Threat Intelligence Group, AI is not creating entirely new threats but accelerating existing ones. Huntley described AI as an “acceleration force” that is helping cybercriminals scale attacks with greater speed and efficiency.
The report highlighted that traditional phishing attacks are declining as companies improve detection systems. Phishing incidents dropped from nearly 22% of intrusions a few years ago to around 6% now. However, attackers are shifting towards exploit-led intrusions and advanced social engineering methods.
Data from Google-owned cybersecurity firm Mandiant showed that 33% of incidents in the Asia-Pacific region were linked to exploit activity. Around 11% involved voice phishing, 9% came through stolen credentials, and 6% were linked to phishing attacks.
Google also warned that AI is reducing the time between identifying vulnerabilities and turning them into active cyberattacks. The company said threat actors are using AI for research, troubleshooting and automating operations, allowing them to focus on larger strategic attacks.
“We don’t have days to patch anymore,” Huntley said. “If attackers operate at computer speed while defenders operate at human speed, defenders are going to lose.”
The report further revealed what Google believes could be the first observed AI-assisted zero-day exploit designed for mass exploitation. The attack reportedly targeted an open-source administration tool and attempted to bypass 2-factor authentication through a logic flaw.
Google also noted that state-backed cyber groups linked to China, Iran and North Korea are testing generative AI tools for cyber espionage and vulnerability analysis. “Every type of threat actor is trying to work out how to use AI to get better at what they’re doing,” Huntley added.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.