IT Brief India - Technology news for CIOs & IT decision-makers
India
Guides
#
artificial intelligence
#
digital transformation
#
disaster recovery
#
hybrid & remote work
#
internet of things
Search
Story image
#
Malware
#
Ransomware
#
Phishing

Cybercriminals harness AI to boost phishing & malware attacks

Wed, 4th Jun 2025
Author image
By Shannon Williams, Journalist

New research has brought to light the growing use of artificial intelligence tools by cybercriminals behind lesser-known ransomware and malware attacks, highlighting a swiftly evolving threat landscape. The investigations indicate that small cybercriminal groups, including CyberLock, Lucky_Gh0$t, and Numero, have harnessed AI capabilities both to develop more persistent malware and to trick users into downloading malicious payloads.

The study outlines how these criminal organisations are adopting AI-driven lures to infect unsuspecting victims, departing from traditional manual techniques in favour of automated, highly convincing fraud. The proliferation of new, seemingly innovative AI services has created opportunities for attackers to blend fraudulent tools with legitimate ones, making it more difficult for individuals and organisations to distinguish between benign and malicious actors online.

Steve Wilson, Chief AI and Product Officer at Exabeam, explained the nuances of these new threats. "While AI delivers massive benefits to security teams, we must stay open-eyed about the risks in today's rapidly evolving threat landscape. The recent wave of cybercriminals exploiting AI hype underscores the importance of vigilance," Wilson said. He added, "In some ways, these incidents are classic phishing scams repackaged, but AI puts a concerning new spin on them."

Wilson points to two significant risk factors. "First, the sheer excitement and constant emergence of new AI tools mean users are increasingly comfortable trying services from unknown vendors, blurring the lines between legitimate new solutions and malicious impostors. Second, AI technology itself makes it alarmingly easy to craft high-quality counterfeit websites and sophisticated phishing campaigns. Attackers can now mimic authentic brands with unprecedented realism, greatly increasing their chances of success."

For users, this evolving threat means that caution is more critical than ever. Wilson cautioned: "Both individuals and organizations must ramp up their vigilance. Users should approach new AI services with scepticism and heightened awareness, carefully verifying legitimacy before engaging. Meanwhile, corporate defenders need to proactively adopt advanced detection tools and modern techniques tailored to counter these AI-enhanced threats. Staying ahead demands constant vigilance and aggressive adaptation."

Mike Mitchell, National Cyber Security Consultant at AltTab, echoed these concerns while highlighting the double-edged sword AI presents for the sector. "AI is transforming the world of cyber security, acting as both an ally and a rising threat. On defence teams, AI helps detect and respond to attacks faster by automating tasks like threat hunting, alert triage, and incident response. But attackers are also using AI to launch smarter sophisticated phishing campaigns, automating attacks, and bypassing traditional defences," he said. "This has created a constant race between offensive and defensive innovation."

Mitchell emphasised the importance of responsible use and adaption. "As AI agents become more advanced, the focus must shift to ethical use, responsible adoption and strengthening human-AI collaboration. One thing is certain; the future of cyber security is intrinsically linked with the evolution of AI and staying ahead means we must continue to adapt quickly."

The findings reflect broader concerns within the cybersecurity community regarding the unpredictable consequences of fast-moving innovation in AI. As both attackers and defenders race to leverage the latest tools, organisations of every size are being urged to educate their users, refine their detection and response protocols, and remain vigilant when navigating the crowded field of AI-enabled products and services.

Industry leaders recommend a cautious, informed approach to all new digital tools, particularly those involving AI. By staying alert to the latest tactics employed by cybercriminals, and investing in advanced defence strategies, businesses and individuals can help to reduce their exposure to the next wave of AI-powered threats.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Vectra AI named leader in first Asia Pacific NDR Magic Quadrant
Adobe unveils AI agents to streamline marketing & support
LogicMonitor appoints Garth Fort as Chief Product Officer to boost AI
Snowflake boosts AI with real-time licensed content access
DuploCloud launches AI DevOps Help Desk to boost automation
Top stories
Dynatrace unveils agentic AI to boost enterprise automation
AI & edge technologies top Hannover Messe 2025 trends
Mary Yang appointed Chief Marketing Officer at SquareX
DeepHealth boosts ultrasound AI by integrating See-Mode team
Rapid7 Q1 2025 incident response findings