AI-driven attacks to become faster, more sophisticated, and harder to detect

Delinea has released its inaugural Cybersecurity and the AI Threat Landscape report. The report, based on exclusive Delinea Labs research and an analysis of several third-party studies and real-world cyber incidents, reveals critical insights into the rapidly evolving threat landscape. With AI reshaping both attack and defence strategies, the findings underscore the urgent need for organizations to adapt their security measures to counter AI-driven threats.

  • Saturday, 5th April 2025 Posted 3 weeks ago in by Phil Alsop

The report uncovers a sharp rise in attacks targeting non-human identities (NHIs), such as service accounts, APIs, and machine identities. Delinea’s research reveals that for every human identity, there are currently 46 NHIs, a number expected to exceed 45 billion by 2025. Alarmingly, over 70% of NHIs are not rotated within recommended timeframes, with an average cycle of 627 days, far exceeding security best practices. Additionally, 97% of organizations expose their NHIs to third-party vendors, significantly increasing the risk of unauthorized access.

“One of the biggest challenges identified in the report is the increasing targeting of non-human identities,” said Jon Kuhn, SVP of Product Management at Delinea. “For organizations, this shift means they are facing a massive and often ignored security gap. With the number of these machine identities expected to grow exponentially in the coming years as enterprises continue to rapidly adopt AI, the lack of proper credential management and the exposure of these identities to third parties creates serious vulnerabilities that cyber attackers can exploit to gain unauthorized access to critical systems and data."

The resurgence of ransomware

The report also reveals a disturbing trend in ransomware attacks, which in 2024 became more sophisticated with the rise of double extortion tactics. Cybercriminals not only encrypt but also exfiltrate sensitive data, threatening to release it publicly unless a ransom is paid. Five ransomware groups — RansomHub, LockBit, Play, Akira, and Hunters — were responsible for over 36% of all ransomware incidents monitored by Delinea in 2024, totalling more than 5,700 attacks. Looking ahead, the report anticipates a surge in AI-driven phishing attacks, with cybercriminals using AI to craft increasingly convincing phishing emails, making it harder to distinguish legitimate communications from malicious ones.

“The rise in ransomware sophistication and the increasing prevalence of AI-driven attacks are undeniable trends in today’s cybersecurity landscape,” said Gal Diskin, Vice President of Threat & Research at Delinea. “Our research reveals that cybercriminals are increasingly using AI and powerful Ransomware-as-a-Service (RaaS) tools to launch more targeted and scalable attacks, particularly around phishing and machine identities. To stay ahead, organizations must adapt their security strategies, focusing not just on advanced threat detection, but also foundational security controls and strengthening multi-factor authentication (MFA) to combat the growing threat of credential phishing.”

Complexity, scalability and compatibility remain challenging - 70% data workers struggle with pipeline management.

Cybersecurity strategies are failing

Posted 4 days ago by Phil Alsop
Cyber firm pleads with enterprises to wake up to the data security crisis before financial and legal fallout becomes catastrophic.
Avanade is unveiling the Avanade Intelligent Garden at this year's RHS Chelsea Flower Show in celebration of its 25th anniversary.

AI agents break cover

Posted 1 week ago by Phil Alsop
In a global survey of IT leaders, Cloudera found that enterprises are keen on AI agents, but fears around data privacy, integration, and data quality...
Economist Impact is pleased to announce the inaugural AI Compute summit, scheduled for May 22nd 2025, at the Scandic Copenhagen in Copenhagen. This...

Majority of AI projects don't make it to market

Posted 1 week ago by Phil Alsop
SS&C Technologies Holdings has published findings from a new survey: governance, process orchestration and strategic planning are critical to...

Security and compliance risks make VPNs obsolete

Posted 1 week ago by Phil Alsop
Zscaler has published the Zscaler ThreatLabz 2025 VPN Risk Report, commissioned by Cybersecurity Insiders, which highlights the widespread security,...

AI tops tech growth charts

Posted 1 week ago by Phil Alsop
Despite high interest rates, economic slowdown, stricter regulations on big tech and AI, Trump's tariff policies, and global trade wars, which hit...