AI agents are on track to revolutionize the landscape of cyber crime, as new research from Gartner suggests that these artificial intelligence tools will play a pivotal role in account takeover attacks by the year 2027. The rise of agentic AI is projected to significantly reduce the time it takes to exploit account exposures by at least 50 percent within the next two years.
According to analysts at Gartner, agentic AI has the potential to automate various steps of the account takeover process, from creating deepfake voice profiles for social engineering to streamlining the entire credential abuse attack chain. Jeremy D’Hoinne, VP analyst at Gartner, emphasized that weak authentication credentials, such as passwords, are often acquired through data breaches, phishing, social engineering, and malware, making account takeover a persistent threat.
Attackers utilize bots to automate login attempts across multiple services in hopes of finding reused credentials, highlighting the importance of strengthening authentication measures and enhancing security protocols. As technology evolves, executives are increasingly becoming targets of technology-enabled social engineering, with Gartner predicting that 40 percent of all social engineering attacks will be directed towards executives by 2028.
To combat these evolving threats, Manuel Acosta, senior director analyst at Gartner, emphasized the need for organizations to adapt procedures and workflows to resist attacks leveraging counterfeit reality techniques. Educating employees about the changing threat landscape, specifically through training on social engineering with deepfakes, is essential in building a resilient defense against cyber attacks.
Akif Khan, VP analyst at Gartner, recommended implementing passwordless phishing-resistant multifactor authentication as a proactive measure to enhance security defenses. Khan noted that security leaders play a crucial role in educating and incentivizing users to transition from traditional passwords to more secure authentication methods, such as multi-device passkeys.
In light of these developments, organizations must remain vigilant and proactive in addressing the evolving cybersecurity landscape. By staying informed and implementing robust security measures, businesses can better protect themselves against the growing threats posed by AI-driven cyber attacks.
To access the full Gartner report on navigating imminent AI turbulence for cybersecurity, readers can follow this link. With the rapid advancements in AI technology, it is imperative for individuals and organizations to stay informed and proactive to effectively mitigate the risks associated with cyber threats.