📊 Full opportunity report: The Frameworks Can’t See the Thing That Matters: A Year of AI-Enabled Cyber Threats on ThorstenMeyerAI.com — validation score, market gap, and execution plan.
TL;DR
A year-long analysis shows AI is enabling cyber attackers to become more sophisticated and accessible, undermining traditional threat evaluation methods. The use of AI shifts attack focus deeper into networks, complicating defense efforts.
Recent analysis from Anthropic reveals that AI is significantly increasing the danger posed by cyber attackers, making traditional threat assessment frameworks obsolete. The report, based on 832 banned accounts from March 2025 to March 2026, shows attackers are using AI to perform more complex tasks once inside networks, blurring the lines between skilled and unskilled actors and challenging existing security paradigms.
Anthropic’s analysis examined 832 accounts involved in malicious cyber activities, mapped onto the MITRE ATT&CK framework. The findings indicate that AI is primarily used to automate attack preparation, such as malware creation, with 67.3% of actors employing AI for this purpose. More concerning, however, is the increased use of AI for post-infiltration activities like lateral movement and account discovery, which rose notably over the year.
Between the first and second half of 2025, the proportion of actors classified as medium risk or higher increased from 33% to 56%. The trend shows a shift from initial access techniques, such as phishing, toward deeper network penetration activities. AI’s role in these advanced techniques lowers the barrier for less skilled actors, democratizing access to sophisticated attack methods that previously required expertise.
The report emphasizes that traditional threat indicators—such as the number of techniques used or the tools employed—no longer reliably distinguish high-risk actors. Both novice and skilled attackers now appear similar in their technique counts, which average around 16 to 20, thanks to AI assistance. This erodes the effectiveness of existing threat assessment heuristics and calls for new methods to evaluate attacker risk.
The frameworks can’t see the thing that matters
For decades, danger meant which techniques an attacker commands. A year of real AI-enabled attacks — 832 banned accounts mapped onto MITRE ATT&CK — shows that signal breaking, just as a new, harder-to-see one takes over.
A year of real misuse, mapped to the standard taxonomy
A window, not a census — these are the cases with enough detail to assess techniques thoroughly. Inside it, the risk level climbed fast.
WHAT WAS STUDIED
THE RISK CLIMB · MEDIUM-OR-HIGHER ACTORS
Python Scripting for Cybersecurity: Linux Edition: Volume 2 – Log Analysis, Network Visibility, and Threat Detection with Hands-On Python Projects
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
“More techniques” stopped meaning “more dangerous”
The old heuristic: count the techniques, judge the tooling. AI dissolved it — because the model supplies the techniques either way. Watch the old signal fail, then watch what it misses.
Risk score vs. technique count
Two ways to read the same attacker. One is going blind. Press play.
OSINT 2.0: AI-Powered Open-Source Intelligence for Beginners (OSINT 2.0 — Artificial Intelligence for Open-Source Intelligence and Cyber Investigations Book 1)
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Deeper into the attack — and into less-skilled hands
Across the year, AI use drifted from getting in toward acting once already inside — the operationally demanding stages that used to require an expert.
The attack lifecycle · where AI is now applied
The center of gravity moved right — toward post-compromise work.
Network Intrusion Detection
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
From “what they know” to “what they’ve built”
The report sorts the signals into three tiers — one dead, one fading, one durable.
Technique count & tooling
16 vs. 20 between novice and expert; platform doesn’t correlate. The model supplies the techniques either way.
Where in the lifecycle AI is applied
Concentrating on operationally demanding, post-compromise stages is a better signal — but it’s eroding as the whole population heads there.
The scaffolding around the model
Architectures that let the model chain stages and run with minimal human input. Not what they know — whether they’ve built a system that lets AI run the attack.
cyber attack simulation kits
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Fixing the map before the territory moves again
A taxonomy that can’t name the most dangerous behavior on the field will quietly mislead the people relying on it. The response runs in two directions.
Fed back into the models
The findings informed safeguards on the most capable models, built to detect & block some of what was observed:
- Blocking malware development
- Blocking mass data exfiltration
- Putting tools in defenders’ hands first (Project Glasswing)
Taking it to the source
Following the Verizon work, Anthropic says it’s in discussions with MITRE about how ATT&CK might evolve:
- A vocabulary for agentic orchestration
- Naming the scaffolding that makes a model an operator
- An interactive technique visualization on the Red blog
Reading it in proportion
- The 832 cases are a detailed subset, not the full population — the precise percentages are directional, not definitive.
- “More autonomous” is not “fully autonomous” — even the standout case needed human input at key moments, which is itself a place for defenders to intervene.
- This is one vendor’s window — the company with visibility into misuse of its own model, publishing what it found. The right thing to do with the data, and worth remembering as you read it.
Why AI’s Role in Cyber Threats Changes Defense Strategies
This development matters because it fundamentally alters how cybersecurity teams evaluate threats. The reliance on technique diversity and tool sophistication as indicators of danger is no longer valid, as AI enables even less skilled actors to perform complex, high-impact activities. This democratization of attack capabilities increases the overall threat landscape and complicates defense planning, requiring a reassessment of risk models and detection strategies.
Furthermore, the shift toward deeper network activities means defenders must now monitor for subtle operational signals rather than just surface-level indicators. The evolving threat landscape underscores the need for AI-aware security measures and more nuanced threat intelligence methods.
Evolution of AI Use in Cyberattack Campaigns
Over the past year, cybersecurity experts have observed a rising trend of AI integration into attack workflows. While earlier attacks primarily relied on manual techniques like phishing and malware delivery, recent data shows attackers increasingly leverage AI to automate and enhance post-breach activities. This shift is driven by the accessibility of AI models, which lower the skill threshold for executing advanced operations within compromised networks.
Prior to this report, threat assessments focused heavily on the number of techniques used and the sophistication of tools. However, the new data indicates these heuristics are increasingly unreliable, as AI blurs the distinction between high- and low-skill actors. The trend aligns with broader concerns about AI democratizing malicious capabilities and the need for updated defense strategies.
“The use of AI for post-infiltration activities is rising rapidly, and it’s enabling less skilled actors to carry out sophisticated attacks.”
— Anthropic report author
Unclear Impact of AI on Long-Term Threat Landscape
It is still unclear how cybersecurity defenses will adapt to these changes or whether new detection methods can keep pace with AI-enabled attacks. The full scope of AI’s influence on threat actor capabilities and the effectiveness of potential countermeasures remains to be seen, as the data only covers one year and a subset of all malicious activity.
Monitoring Evolving Attack Techniques and Defense Adaptations
Security researchers and practitioners will need to develop new threat assessment frameworks that incorporate AI-specific indicators. Expect ongoing analysis of attack patterns, increased investment in AI-aware detection tools, and further research into how AI shapes the threat landscape in 2026 and beyond. The next steps include tracking whether these trends accelerate or stabilize and testing new defense strategies against AI-augmented adversaries.
Key Questions
How does AI make attackers more dangerous?
AI automates complex tasks like lateral movement and account discovery, enabling less skilled actors to carry out sophisticated attacks that previously required expertise.
Why are traditional threat indicators no longer reliable?
Because AI helps all attackers, regardless of skill level, perform similar techniques, reducing the correlation between technique diversity or tool sophistication and threat level.
What does this mean for cybersecurity defenses?
Defenders need to update their threat models to include AI-driven attack techniques and develop AI-aware detection strategies that go beyond surface-level indicators.
Are these trends expected to continue?
While current data shows rapid growth in AI-enabled attacks, it is uncertain how defenses will evolve or whether attackers will develop new methods to evade detection.
Source: ThorstenMeyerAI.com
