The Drum · Weekly AI news, freeSubscribe →
Share
As AI technology advances, corporate executives face a surge in sophisticated phishing scams tailored with personal details, prompting major firms to issue urgent warnings about this escalating threat.
The rise of artificial intelligence (AI) has brought significant advancements across various industries, but it has also introduced new and sophisticated cyber threats. Corporate executives are now facing an influx of hyper-personalized phishing scams generated by AI bots, a trend that is causing growing concern among leading companies.
Leading organizations such as British insurer Beazley and ecommerce giant eBay have issued warnings about the increasing prevalence of fraudulent emails containing personal details. These attacks are not just more frequent; they are also more targeted and convincing due to the advanced capabilities of AI technology.
“AI is behind a lot of these attacks, and they are getting very personal,” said Kirsty Kelly, Chief Information Security Officer at Beazley. “We’re seeing very targeted attacks that have scraped an immense amount of information about a person.”
The rapid advancement of AI has lowered the entry threshold for advanced cybercrime. Cybersecurity experts highlight several key risks:
Nadezda Demidova, a cyber crime security researcher at eBay, emphasized that “the availability of generative AI tools lowers the entry threshold for advanced cybercrime.” She noted a notable growth in the volume of all kinds of cyberattacks, especially those that are highly personalized.
While the rise of AI-generated phishing attacks presents significant risks, it also highlights the need for enhanced cybersecurity measures and risk management strategies. Companies can take several steps to mitigate these threats:
Kip Meintzer, an executive at Check Point Software Technologies, noted at a recent investor conference that “AI has given hackers the ability to write a perfect phishing email.” This underscores the importance of proactive measures to protect against these sophisticated attacks.
The consequences of successful phishing attacks are increasingly severe. According to the US Cybersecurity and Infrastructure Security Agency (CISA), more than 90 percent of successful cyber attacks begin with a phishing email. IBM reports that the global average cost of a data breach rose nearly 10 percent to $4.9 million in 2024.
AI is particularly effective in crafting business email compromise (BEC) scams, a specific type of malware-free phishing where fraudsters trick recipients into transferring funds or divulging confidential company information. The FBI estimates that these scams have cost victims worldwide more than $50 billion since 2013.
The integration of AI in cybercrime has elevated the sophistication and effectiveness of phishing attacks, particularly those targeting corporate executives. Companies must adopt comprehensive risk management strategies to protect against these threats, including employee training, advanced detection tools, and multi-factor authentication. As AI continues to evolve, so too must our defenses.
Tags
Original Sources
About the author
Marcus began tracking AI's market implications in 2016, noticing AI-related patent filings accelerating ahead of earnings upgrades before most of the sell-side had caught on. A former fixed-income quantitative analyst, he spent two decades building models that priced risk across emerging markets before pivoting to cover the economic impact of AI full-time. His writing translates opaque technical developments into clear risk/reward terms — and he's rarely diplomatic about the gap between AI valuations and underlying fundamentals. He believes most market participants still underestimate AI's long-run deflationary effect on knowledge work.
More from The Analyst →This Week's Edition
17 January 2025
133 articles
Related Articles
Related Articles
More Stories
