Blog

AI and Cybersecurity: How to Defend Against the Rising Threat of Escalating Cyberattacks

Emilia Wright | January 10, 2025

Responsive image

AI Puts Companies at Risk of Escalating Cyberattacks: Understanding the Threat Landscape and Best Defense Strategies

Introduction: A Relentless Battle Against Cybersecurity Threats

Cybersecurity is no longer an occasional concern; it’s become an incessant struggle that organizations face daily. Recent data reveals that companies encounter close to **1 billion cyber threats every day**. This staggering number illustrates a significant shift in the digital threat landscape, as cybersecurity threats have evolved from isolated incidents to a continuous barrage. This evolution reflects the drastic changes in digital infrastructure—from the emergence of the web and email to the advent of cloud computing and generative AI.

A Historical Perspective on Cybersecurity

In the late 1980s, I authored the initial lines of cybersecurity code for personal computers. Back then, the digital environment was more simplistic, with fewer and less sophisticated threats that were easily managed. Over the decades, however, the exponential growth of digital connectivity has expanded the attack surface dramatically. Issues that once warranted urgent discussions at the highest levels of government now occur regularly, often without the organizations involved even realizing they’ve been compromised.

As someone who has been deeply entrenched in the cybersecurity field—having led Symantec and advised U.S. government officials and corporate leaders—I can attest to the ongoing shifts in this volatile landscape.

Generative AI: A Game Changer in Cybersecurity

We are at a pivotal moment in cybersecurity, primarily due to the rise of **generative AI** (Gen AI). This technology has democratized access to advanced tools, enabling the easier creation and exploitation of vulnerabilities. By 2025, I predict the introduction of **AI agents**—autonomous programs that operate on behalf of users—which will reshape the cybersecurity battlefield dramatically.

With every technological advancement arises an equally potent wave of threats. Gen AI will necessitate that security executives and startups prepare for entirely new types of attacks, such as **adversarial AI**, **data poisoning**, and **agent impersonation**. It’s critical to introduce solutions to these emerging challenges before they overwhelm existing security measures.

The Challenge of User Intervention and Notification Fatigue

The evolution of technology has made users increasingly intolerant of disruptive security solutions. A recent survey shows that **78% of millennials have deleted an app** due to notification fatigue. This presents a unique challenge: as AI agents start making decisions autonomously, the complexity of cybersecurity will escalate. If a compromised AI agent begins executing actions within an enterprise system, traditional defenses may struggle to respond promptly.

To combat this, security providers must create solutions that require minimal user intervention. The success of these platforms will rely heavily on their ability to integrate into existing systems, reduce unnecessary alerts, and prioritize user usability without sacrificing effectiveness.

Operational Efficiency: A Key to Effective Security

While advancements in cybersecurity are essential, they often come with trade-offs. For instance, improved threat detection has led to an increase in false positives, causing inefficiencies within security teams. A delicate balance must be struck; filtering too aggressively may block legitimate traffic, while a lenient approach risks leaving crucial vulnerabilities exposed.

This balancing act will be even more crucial as AI agents become commonplace. Security executives and startups must prioritize operational efficiency along with security effectiveness to ensure that the “cure” does not create more problems than the original threat.

The Growing Economic Threat of Cyberattacks

The stakes in cybersecurity are escalating rapidly. According to the International Monetary Fund, the economic ramifications of cyberattacks could exceed **$23 trillion by 2027**, up from approximately $8.4 trillion in 2022. As AI agents become more widespread, the frequency, complexity, and potential consequences of cyberattacks will likely intensify.

Throughout my career, I’ve witnessed the way technology transforms both the threat landscape and the strategies employed by security teams. Historical cyber events—like Code Red, Melissa, and Stuxnet—demonstrate the real-world impacts of these threats. Stuxnet, in particular, highlighted how sophisticated cyberattacks can cripple critical infrastructure, extending the global cyberattack surface into physical operations.

Conclusion: The Path Forward in Cybersecurity

The future of cybersecurity hangs in the balance, shaped by human actions and responses to the evolving threat landscape. As businesses grapple with the rising tide of cyber threats compounded by generative AI and autonomous agents, it is imperative that they adopt holistic and adaptable cybersecurity strategies.

In this age of relentless cyberattacks, incorporating **actionable intelligence**, **clear prioritization**, and **adaptable defense mechanisms** tailored to each organization’s unique needs will be critical in safeguarding against the next wave of digital threats. The response to these challenges will ultimately determine the resilience of enterprises in the face of growing cyber adversities.

Enrique Salem, an investor in early-stage cybersecurity infrastructure software companies at Bain Capital Ventures, underscores the importance of innovation in defending against the escalating threats posed by sophisticated cyber adversaries. The time for organizations to act is now; the threats are here, and they are only going to become more complex and pervasive.