AI Cyber Attacks Statistics [2025 and beyond]

In today’s digital landscape, artificial intelligence (AI) is transforming the nature of cyber threats, assisting in a new era of AI-driven cyber attacks. Cybercriminals are increasingly leveraging AI technologies to craft more sophisticated, automated, and hard-to-detect attacks, from highly personalized phishing schemes to advanced malware that adapts in real-time. Today, almost 40% of the cyberattacks are AI-driven.

This rapid evolution poses significant challenges for cybersecurity professionals, as traditional defense mechanisms struggle to keep pace. Understanding the scope, methods, and implications of AI-enabled cyber attacks is crucial for organizations aiming to safeguard their data and infrastructure in an increasingly complex threat environment.

In this guide, we will examine AI Cyber attack statistics to understand the scale, impact, and evolving tactics of AI-driven threats shaping the future of cybersecurity.

Global AI Cyber Attacks Statistics

40% of all cyberattacks are now AI-driven 

Recent data indicates a significant rise in the use of artificial intelligence (AI) by cyber attackers, with approximately 40% of all cyberattacks now being AI-driven. This trend underscores a shift toward more adaptive and scalable threat models, including advanced malware and automated phishing campaigns. 

Moreover, AI algorithms have been observed to automatically analyze target profiles, identify system vulnerabilities, and generate highly customized attack vectors, increasing the likelihood of successful breaches.

Cybercrime inflicted over $10.4 billion in damages globally in 2024

In 2024, cybercrime escalated to unprecedented levels, with its global economic impact surpassing €10 billion ($10.4 billion) a 100% increase compared to the losses reported in 2023. This rapid growth effectively positions cybercrime as the third-largest global economic entity, trailing only the United States and China. The surge in cyberattacks is largely attributed to motivations such as financial gain, ideological agendas, and state-sponsored espionage.

Password attacks escalated to 7,000 per second in 2024

In 2024, password attacks surged to a rate of 7,000 attempts per second, a more than 1,100% increase from 579 attempts per second in 2021. This exponential growth underscores the accelerating velocity and automation of cyberattacks, reflecting a significant escalation in both frequency and scale over just three years.

Infostealers compromised 2.1 billion credentials in 2024

In 2024, infostealers were responsible for compromising 2.1 billion credentials, representing over 60% of all stolen credentials that year. This figure illustrates the dominant role of infostealers in credential theft and highlights the growing efficacy of AI-enhanced data exfiltration tools, which are enabling more targeted and large-scale breaches with minimal manual intervention.

A computer connected to the Internet gets attacked 2,244 times a day

A study conducted by the University of Maryland found that computers connected to the Internet experience an average of 2,244 cyberattack attempts per day, translating to approximately one attack every 39 seconds. This statistic was derived from monitoring continuous brute-force attacks on a range of systems, highlighting the persistent and automated nature of cybersecurity threats in real-time digital environments.

In 2023, data breaches affected approximately 353.03 million individuals

According to the Identity Theft Resource Center, a total of 353,027,892 individuals were affected by data breaches in 2023. The majority of these breaches were attributed to cyberattacks, underscoring the significant role of malicious digital activity in compromising personal and organizational data on a massive scale.

AI Tools Used by Cybercriminals

Top AI models exploited: ChatGPT, OpenAI API, Google Gemini, Microsoft Copilot, and Anthropic Claude are among the most commonly leveraged platforms by cybercriminals for crafting sophisticated attacks.

• Rise of specialized AI hacking tools: Open-source and hacking-oriented AI tools such as DeepSeek, Qwen, WormGPT, and AI-driven DDoS platforms have seen a significant increase in usage, contributing to a surge in automated and scalable cyber attacks.
• Lowering of technical barriers: AI-assisted coding and automated attack generation have reduced the skill level required for executing cyber attacks, enabling a broader range of actors including less technically skilled individuals to launch complex threats.

Emerging Types of AI-Driven Cybercrimes

As artificial intelligence reshapes the digital landscape, it is also fueling a surge in sophisticated cybercrimes. The following categories highlight the most prominent AI-powered threats, backed by the latest data:

1. AI-Generated Phishing

AI is transforming phishing into a precision-driven threat. With large language models (LLMs) capable of generating convincing emails at scale, cybercriminals are exploiting this capability to deceive victims more effectively and affordably.

• 40% of phishing emails targeting businesses are now AI-generated.
• 60% of recipients fall for AI-generated phishing emails comparable to success rates for human-written scams.
• Cybercriminals using LLMs can cut campaign costs by 95%, enabling broader and more frequent attacks.
• The average cost of a phishing-related data breach is $4.88 million.

2. AI-Powered Deepfakes

Deepfake technology has evolved rapidly, becoming a critical tool for fraudsters. These AI-generated impersonations are now central to high-value social engineering and financial scams.

• 61% of organizations reported an increase in deepfake attacks over the past year.
• Deepfake-related incidents are expected to grow by 50–60% in 2024, with an estimated 140,000 to 150,000 global cases.
• 75% of deepfakes were used to impersonate CEOs or other C-suite executives, highlighting their use in executive fraud schemes.
• Losses from deepfakes and similar AI-enabled attacks are projected to surge by 32%, reaching $40 billion annually by 2027.
• Impersonation scams involving deepfakes cost victims $12.5 billion in 2023 alone.

3. AI-Enhanced Ransomware

AI is making ransomware more adaptive and effective, allowing attackers to automate and tailor their exploits for maximum impact.

• 48% of cybersecurity professionals anticipate AI will play a key role in the next wave of ransomware attacks.
• The average cost of a ransomware incident reached $4.45 million in 2023.
• Ransomware activity surged, with attacks increasing 13-fold as a percentage of total malware detections in just six months.

4. AI in Cryptocrimes

The convergence of AI and cryptocurrency is breeding a new frontier of fraud. From deepfake wallet scams to algorithmic laundering, AI is central to a growing number of crypto-related crimes.

• 70% of cryptocrimes are expected to involve deepfake technology by 2026.
• In 2023, cryptocurrency-related losses hit $5.6 billion, making up half of all reported financial fraud complaints.
• These losses represent a 53% increase over the previous year, reflecting the rising threat posed by AI in financial scams.

AI Cyber Attacks Financial Impact

AI-assisted cyber attacks are now estimated to cost businesses over $40 billion annually

According to the 2024 IBM Cost of a Data Breach Report, AI-assisted cyber attacks are estimated to cost businesses over $40 billion annually. The average cost of a data breach reached $4.45 million, marking a 15% increase over the past three years. Organizations in the United States reported the highest average breach cost at $9.48 million, while the healthcare sector remains the most targeted, with an average breach cost of $10.93 million.

60% of small businesses are failing within 6 months of a major AI-based cyber breach

Small businesses are suffering disproportionately around 60% of small enterprises are unable to recover and fail within six months of experiencing a major AI-based cyber breach. Additionally, AI-driven attacks are associated with 27% longer detection and containment times, further compounding losses. However, organizations deploying AI-powered security solutions reduced breach lifecycles by an average of 108 days and realized cost savings of $1.76 million per incident compared to those without such tools.

AI-generated Cybersecurity Risks

60% of IT professionals believe their organizations are unprepared to counter AI-generated cyber threats

According to a 2024 survey by Darktrace, 60% of IT professionals report that their organizations are not adequately prepared to defend against AI-generated cyber threats. This sentiment reflects growing concerns about the sophistication and speed of AI-driven attacks, which are outpacing traditional cybersecurity measures.

In 2024, 79% of IT security leaders confirmed that they have deployed controls to address AI-generated cyber risks

79% of IT security executives report having implemented measures to mitigate AI-related cyber risks. However, only 54% of hands-on cybersecurity practitioners express confidence in the effectiveness of these measures, revealing a 25-percentage-point confidence gap between leadership and operational teams in addressing AI-driven threats.

41% of organizations currently maintain endpoint detection and response (EDR) strategies

According to Deep Instinct (2024), 41% of organizations continue to rely on endpoint detection and response (EDR) strategies as a primary defense against AI-driven cyber attacks. However, research from the Ponemon Institute indicates that over 50% of organizations consider EDR solutions ineffective against emerging threat vectors, highlighting a significant gap between current defensive practices and their perceived efficacy in combating novel AI-enabled attacks.

31% of organizations intend to boost their investment in EDR solutions

Despite acknowledged limitations of endpoint detection and response (EDR) solutions, 31% of organizations plan to increase their investment in EDR technologies, according to Deep Instinct (2024). This indicates a continued reliance on EDR as a core component of cybersecurity strategies, even amid concerns about its effectiveness against advanced AI-driven threats.

Organizational Readiness for AI Cybersecurity Risks

Despite the sharp increase in AI-driven cyber threats, only about 35% of organizations globally feel very prepared to defend against these sophisticated attacks. This widespread lack of confidence reveals clear weaknesses in many cybersecurity strategies and defenses today. One of the biggest challenges is the severe shortage of skilled professionals who are proficient in both AI technologies and cybersecurity. Currently, there are over 3 million cybersecurity jobs left unfilled worldwide, making it incredibly difficult for organizations to build strong teams capable of tackling complex AI-enhanced threats.

This talent shortage directly affects an organization’s ability to:

• Develop and deploy effective AI-powered security tools
• Detect and respond quickly to AI-driven attacks
• Continuously monitor and adapt to an ever-changing threat environment
  

To close this gap, investing in targeted training programs, proactive recruitment, and interdisciplinary education is essential. Strengthening this workforce will be key to boosting organizational readiness and resilience as AI cyber risks continue to grow.

Leveraging AI for Cybersecurity Defense

• In 2024, approximately 66% (2 out of 3) of organizations have adopted AI and automation within their Security Operations Centers (SOCs), reflecting rapid integration of AI-driven defense tools.
• Core AI-based strategies include behavioral analytics, anomaly detection, and automated incident response, which are increasingly recognized as critical components for proactive threat mitigation.
• Leveraging AI technologies has been shown to reduce breach identification and containment times by up to 100 days, significantly minimizing potential damage and response costs.
• Looking ahead, implementing zero trust architectures and adopting quantum-resistant cryptographic methods are essential steps organizations are taking to future-proof their cybersecurity frameworks against evolving AI-driven threats.

Challenges and Future Outlook in AI Cybersecurity

The ongoing escalation between AI-driven cyberattacks and AI-powered defense tools has sparked an intense arms race in the cybersecurity landscape. As AI technologies become more widespread, the complexity of security governance is rising 14% of organizations report significant concerns about managing AI-related risks effectively.

Alongside technical challenges, there are growing ethical and legal questions about the use of AI in both cybercrime and cybersecurity, raising important debates on regulation and responsible AI deployment. To stay ahead, continuous innovation, cross-industry collaboration, and adaptive strategies will be essential to effectively counter the evolving threats powered by AI.

Wrapping Up

AI-driven cyber attacks are growing fast and becoming more complex every day. Behind these statistics are real people and organizations facing increasing risks to their data, privacy, and operations. While the challenges are significant, the rise of AI also pushes us to innovate smarter defenses and work together more closely than ever before. Understanding these trends is the first step toward staying one step ahead in a world where technology is constantly evolving. Staying informed and proactive is essential to protecting critical data and infrastructure in this rapidly changing cyber landscape.