AI-powered attacks are on the rise, faster, more convincingly, and at a greater scale. While artificial intelligence (AI) is transforming how organizations innovate and operate, it’s also reshaping how cybercriminals execute attacks.
In our recent Cybersecurity Quick Take video, When AI Becomes the Attacker, Celerium’s CISO, Vince Crisler, discusses the growing role of AI-generated phishing and deepfake impersonation attacks. He highlights the accelerating rise of AI-powered threats where attackers use the company’s own AI tools, and what IT and security teams need to prepare for in 2026.
Vince points to the 2026 Data Breach Industry Forecast from Experian, with input from a late 2025 IBM industry report. Here are the revealing statistics:
- Attackers leveraged AI in 16% of data breaches in 2025.
- 37% of those attacks were AI-generated phishing schemes.
- 35% were deep-fake impersonation tactics.
In 2026, attackers will continue to leverage AI, especially AI chatbots and AI LMS (Learning Management System). CISOs need to pay close attention to the AI used across their companies and networks. This puts increased pressure on CISOs to understand not just where AI is deployed across their environments, but how it’s governed and secured. If an attacker gains access to your AI tools, they can accelerate data exfiltration. AI becomes a force multiplier for threat actors.
Vince reinforces the real value of AI, but cautions that without the right security controls, it can introduce serious risk.
To hear Vince Crisler’s full insights, watch the video When AI Becomes The Attacker.
Stay ahead of the latest cybersecurity threats.
Sign up for a 60-day trial of Data Breach Defender®
