AI‑powered phishing surges
Phishing has been turbocharged by generative AI—attackers can craft personalized emails, deepfakes and voice clones in minutes, fueling a global fraud machine now estimated at $400 billion. Defenders are racing to add ML detection, but experts warn automated attacks are outpacing many legacy controls and detection tools. (techradar.com) (pcmag.com) (dataconomy.com)
INTERPOL’s 2026 Global Financial Fraud Threat Assessment put global financial fraud at USD 442 billion for 2025 and reported AI‑enhanced schemes are roughly 4.5 times more profitable than traditional methods. (interpol.int)) CrowdStrike’s 2026 Global Threat Report found average eCrime “breakout” time dropped to 29 minutes in 2025 with the fastest observed breakout at 27 seconds. (crowdstrike.com)) CrowdStrike’s prior reporting documented a 442% surge in voice‑phishing (vishing) between the first and second halves of 2024, illustrating how synthetic voice and social engineering are scaling initial access. (crowdstrike.com)) Google says Gmail’s new large‑language‑model protections now block 99.9% of spam/phishing/malware and stop an additional ~20% more spam while processing roughly 1,000x more user‑reported spam each day. (blog.google)) Industry surveys and vendor forecasts show defenders adopting AI/ML at scale: Experian’s 2026 fraud forecast reported 73% of fraud leaders say GenAI has permanently altered the fraud landscape and a majority view AI/ML tools as essential to keep pace. (experianplc.com)) U.S. K‑12 security reports highlight the exposure schools face—CISA’s K‑12 guidance lists multi‑factor authentication, account management and incident‑response playbooks as core controls, while the 2025 CIS/MS‑ISAC K‑12 report found 82% of reporting schools experienced cyber incidents between July 2023 and December 2024. (cisa.gov)) EdTech guidance for districts notes common MFA barriers in schools (student phone access and equity) and recommends SSO, hardware tokens or managed MFA services as practical workarounds, and CIS/MS‑ISAC data shows many districts spend under 8% of IT budgets on cybersecurity—factors that drive adoption of centralized MDM and automated patching. (edtechmagazine.com)) RSAC coverage framed the contest as “AI vs. AI,” urging machine‑speed detection and response, and CRN’s RSAC roundup documented new AI‑native detection features from vendors including Palo Alto, CrowdStrike, Cisco and Wiz. (pcmag.com))
