AI makes fraud and DDoS riskier
Security vendors are warning that AI is lowering the cost and raising the speed of account takeover fraud and making DDoS attacks faster and more multi‑vector, allowing many attacks to evade traditional defenses. The trend means small businesses are being targeted more aggressively, and vendors that pair real‑time monitoring with resilient architectures are gaining urgency in procurement conversations (fintechweekly.com, prnewswire.com).
Corero Network Security published a 2026 threat report on April 2, 2026 that says attackers are combining automation and short, low-volume traffic spikes to make many service‑disruption attacks invisible to older defenses. (prnewswire.com) A commentary in FinTech Weekly on April 2, 2026 argues the same automation is lowering the cost of taking over online accounts — stealing control of a legitimate user’s account to move money or change payment details — and that small businesses are seeing heavier targeting because they typically have weaker fraud controls. (magazine.fintechweekly.com) Corero’s report uses the phrase “multi‑vector” to describe attacks that mix methods — for example, small bursts of traffic that mimic normal users alongside requests that target specific application functions — and notes campaigns combining more than 50 different attack types can happen in seconds. (corero.com) When the report says “sub‑200 Mbps” attacks, that means attackers are sending less than 200 megabits per second of traffic — an amount small enough to blend into normal internet use but enough, the report warns, to overwhelm poorly provisioned services; Corero’s analysis found many of these low‑volume attacks are now common. (prnewswire.com) Fraud firms and payment‑security analysts say the same AI capabilities are being used on the identity side: automated tools can make credential‑stuffing attacks (replaying leaked username/password pairs), craft convincing phishing messages at scale, and run “MFA fatigue” campaigns (repeated prompts that trick people into approving logins), which together have driven large spikes in account‑takeover attempts reported in 2025. (sift.com) Buyers are reacting by prioritizing vendors that combine real‑time monitoring (continuous detection and automated response at the network or service edge) with resilient architectures (designs that spread traffic, limit rates, and failover to backups), and procurement discussions now frequently reference Corero’s real‑time protections and layered fraud controls recommended by payments risk teams. (corero.com)
