AI-enabled cyber risk climbs the board agenda

A corporate board used to hear “artificial intelligence” and think of chatbots, coding tools, and lower costs. In April 2026, the same board is also hearing that top model labs are publishing cyber risk papers at the same time researchers are uncovering live spyware and credential-theft campaigns. (openai.com) The reason those two stories belong together is simple: better models can help defenders find flaws faster, but the same jump in capability can also help attackers move faster once they get access. OpenAI said in December 2025 that cyber capabilities in its models are “advancing rapidly,” and Anthropic said on April 7, 2026 that its newest model showed a “striking leap” over its previous frontier system. (openai.com) (anthropic.com) Anthropic’s red-team researchers said on April 7 that Claude Mythos Preview performed strongly enough on cyber evaluations to trigger extra safeguards under the company’s policy framework. In January 2026, the same research group had already reported that current Claude models could complete multi-step attacks on networks with dozens of computers using ordinary open-source tools. (red.anthropic.com 1) (red.anthropic.com 2) OpenAI has been moving in the same direction from the defense side. In February 2026 it launched Trusted Access for Cyber, an identity-based program that gives stronger cyber capabilities to vetted defenders, and it paired that with $10 million in application programming interface credits for security work. (openai.com) That is the model-lab half of the story. The field half arrived on April 8, when TechCrunch reported that researchers had identified a hack-for-hire group targeting journalists, activists, and government officials across the Middle East and North Africa. (techcrunch.com) The group’s playbook was old-school and effective: phishing pages to steal Apple iCloud passwords, access to Signal accounts, and Android spyware that could take over a phone. That combination matters because cloud backups and messaging accounts often hold the same conversations, contacts, and files that used to sit only on the device itself. (techcrunch.com) This is also not a world of lone hackers in a basement. TechCrunch said the case fit a broader pattern in which governments outsource intrusion work to private contractors, and a separate March 2026 report described government-built iPhone hacking tools turning up in criminal hands, showing how offensive tools can spread beyond their original buyers. (techcrunch.com 1) (techcrunch.com 2) Boards are reacting to that mix of trends, not to one headline. On one side, frontier labs are saying their newest systems are good enough at cyber tasks to require gated access, red teaming, and preparedness frameworks; on the other, real operators are already stealing cloud credentials and planting spyware with tools that do not require science-fiction levels of automation. (openai.com) (anthropic.com) (techcrunch.com) That changes the boardroom question from “How do we use artificial intelligence?” to “What breaks faster when attackers use it too?” In 2026, the shortest list usually starts with employee phishing, cloud backups, messaging accounts, software flaws, and the outside vendors who now sell intrusion as a service. (openai.com) (techcrunch.com)