BOSTON, Dec. 18, 2025 /PRNewswire/ — A report from the Boston Consulting Group (BCG) highlights a significant shift in the cybersecurity landscape due to the rise of artificial intelligence (AI). The study reveals that 60% of companies surveyed believe they faced AI-enabled cyberattacks in the past year, yet only 7% have implemented AI-driven defense mechanisms. This discrepancy underscores the urgency for organizations to adapt their cybersecurity strategies to the evolving threats posed by AI.
The report, titled AI Is Raising the Stakes in Cybersecurity, is based on a global survey of 500 senior executives across various industries. It indicates that while awareness of AI-related risks is growing, the adoption of advanced security measures is lagging behind the sophistication of these attacks. “AI is enabling a new era of cyber threats that are faster, more deceptive, and more scalable,” said Shoaib Yousuf, a BCG managing director and co-author of the report. “But most companies are still stuck with outdated tools and underfunded strategies, leaving them highly exposed.”
Among the findings, the report outlines that 53% of executives rank AI cyber threats as one of their top three organizational risks. However, only 5% of companies reported a significant increase in their cybersecurity budgets as a direct result of AI attacks. Compounding this issue, 69% of organizations are struggling to hire talent specialized in AI cybersecurity. Despite these challenges, 88% of respondents expressed plans to adopt AI-enabled defense technologies.
The report also details how AI is enhancing the capabilities of cybercriminals. Incidents include a $25 million fraud at a multinational engineering firm triggered by a deepfake video call impersonating the CFO, and a ransomware attack on a healthcare provider that disrupted hospital operations. These cases illustrate the breadth and impact of AI-driven cyber threats, prompting executives to identify the most critical risks they anticipate over the next two years, including AI-enabled financial fraud and advanced AI-powered malware that evolves to circumvent defenses.
The report suggests that the pace of threats will continue to evolve, compelling organizations to recalibrate their defenses frequently. High-risk exposure is prevalent across all sectors, with healthcare and government ranks as some of the most vulnerable.
In light of these challenges, BCG emphasizes the need for alignment between CEOs and Chief Information Security Officers (CISOs) to effectively address cybersecurity issues. The report advocates for a dual leadership model where CEOs prioritize cybersecurity at the board level and CISOs expedite the implementation of impactful, AI-enabled use cases. Recommendations include establishing a board-backed AI-cyber mandate, deploying AI in high-impact defense areas, securing AI systems, and enhancing cyber agility through multi-vendor architectures.
“The era of passive cyber defense is over,” said Vanessa Lyon, global director of BCG’s Center for Leadership in Cyber Strategy and co-author of the report. “Attackers are moving at machine speed. The only winning strategy is to meet autonomy with autonomy, through intelligence, leadership, and commitment. This is the moment when organizations decide whether they will shape the AI-cyber landscape or be shaped by it.”
As organizations grapple with the growing complexity of AI-driven threats, the findings from BCG serve as a clarion call for enhanced investment in AI cybersecurity measures and a strategic alignment of leadership roles to navigate this precarious landscape effectively. For further details, the full report can be accessed here.
Media Contact:
Eric Gregoire
+1 617 850 3783
[email protected]
Source: Boston Consulting Group (BCG)
See also
Moody’s Upgrades Marvell to Baa2 Amid AI Selloff; Key Market Catalysts Ahead
Meta Launches AI Glasses with Voice Amplification Feature for Noisy Environments
China’s AI Strategy: 10 Critical Insights for Managers on Integration, Scale, and Geopolitical Impact
AI Concerns Trigger Stock Declines in South Korea and Taiwan as Investors Pull Back
Google Launches Gemini 3 Flash as Default AI Model with Enhanced Features
