The rise of AI in cybercrime is transforming the threat landscape, allowing for faster, more efficient attacks. As criminals exploit AI and automation, defense mechanisms must evolve to keep pace.
The Evolution of Cybercrime with AI
Cybercrime has evolved into a highly efficient business since the 1990s, mirroring industrial models. AI and automation are now integral, enabling cybercriminals to maximize their efforts with minimal resources. FortiGuard’s analysis of global cyber threats highlights this shift, leveraging data from millions of global sensors over the past two decades.
AI technology is accelerating the attack process, with malicious tools such as WormGPT, FraudGPT, and HexStrike AI enabling cybercriminals to execute sophisticated attacks rapidly. These AI tools act as force multipliers, reducing the skills and time required for successful intrusions.
AI Tools in Cybercrime
AI-enabled tools are revolutionizing cybercrime by automating complex tasks. FraudGPT and WormGPT are creating convincing phishing campaigns, while HexStrike AI assists in reconnaissance and attack-path generation. APEX AI simulates advanced persistent threat (APT) attacks, and BruteForceAI automates penetration testing with human-like precision.
The use of these tools does not create new vulnerabilities but significantly shortens the time needed to exploit existing ones. This has led to a dramatic reduction in the time-to-exploit window for vulnerabilities.
Speed and Efficiency in Cyber Attacks
The time-to-exploit for vulnerabilities has plummeted from a week to just 24 to 48 hours for critical issues. In some cases, exploitation commences within hours of disclosure. FortiGuard’s Douglas Santos emphasizes that AI is driving this rapid pace, predicting even faster attacks in the near future.
Ransomware remains a prevalent threat, with over 7,800 confirmed global victims in 2025. The US, Canada, and Europe were the most targeted, with the Qilin, Akira, and Safepay groups leading the charge.
Defensive Strategies Against AI-Driven Cybercrime
In response to the increasing speed and scale of cyber attacks, defense strategies must incorporate AI and automation to enhance detection and response times. FortiGuard suggests focusing on identity-centric detection and exposure reduction to counteract machine-speed threats.
FortiGuard is actively contributing to international efforts against cybercrime, collaborating with organizations like INTERPOL and the World Economic Forum. These initiatives aim to disrupt cybercrime networks and strengthen global security measures.
As cybercriminals continue to harness AI, the need for robust, AI-driven defenses becomes more critical than ever. Organizations must adapt quickly to protect their assets in an increasingly automated threat environment.
