Cybercriminal activities have surged dramatically, with a reported 89% increase in incidents utilizing artificial intelligence year-over-year, according to CrowdStrike’s 2026 Global Threat Report. The report indicates that attackers are now breaching systems with astonishing speed, as the average “breakout time” has decreased to just 29 minutes, a 65% reduction from the prior year.
The report details the tactics of over 280 identified adversaries, highlighting a concerning trend where legitimate generative AI tools are exploited to create harmful commands that can steal sensitive information like login credentials and cryptocurrency. Notably, data exfiltration has been recorded as occurring within just four minutes after an initial breach.
Nation-state actors are also increasingly incorporating AI into their operations. For instance, the Russian group FANCY BEAR has utilized AI-based malware to enhance its reconnaissance capabilities. Meanwhile, North Korean activities linked to the group FAMOUS CHOLLIMA have more than doubled, indicating a growing reliance on AI technologies among state-sponsored cyber groups.