IBM 2026 X-Force Threat Index: AI-Driven Attacks are Escalating as Basic Security Gaps Leave Enterprises Exposed

· Source: IBM - Announcements (Artificial intelligence) · Field: Technology & Digital — Artificial Intelligence & Machine Learning, Cybersecurity & Data Privacy · Depth: Intermediate, short

Summary

The IBM 2026 X-Force Threat Intelligence Index reveals a significant escalation in AI-driven cyberattacks, with cybercriminals exploiting basic security gaps at dramatically higher rates. IBM X-Force observed a 44% increase in attacks exploiting public-facing applications, largely due to missing authentication controls and AI-enabled vulnerability discovery. Active ransomware and extortion groups surged by 49% year over year, while large supply chain compromises nearly quadrupled since 2020. Vulnerability exploitation became the leading cause of attacks, accounting for 40% of incidents in 2025. Infostealer malware exposed over 300,000 ChatGPT credentials in 2025, highlighting AI platforms' growing identity risk. Manufacturing remained the top target for the fifth year, accounting for 27.7% of incidents, and North America became the most attacked region, rising to 29% of total cases.

Key takeaway

For security leaders overseeing enterprise defenses, the rapid acceleration of AI-driven attacks demands a proactive shift in strategy. You should prioritize implementing agentic-powered threat detection and response systems to identify and remediate vulnerabilities before they escalate, especially given the rise in public-facing application exploits and supply chain compromises. Bolster authentication and access controls for AI platforms to mitigate credential risks.

Key insights

AI tools are accelerating cyberattacks by enabling faster vulnerability exploitation and lowering barriers to entry for threat actors.

Principles

Method

Attackers use AI to speed research, analyze large datasets, iterate on attack paths, and automate complex tasks like reconnaissance and advanced ransomware attacks, often exploiting trust relationships and CI/CD automation.

In practice

Topics

Best for: CTO, VP of Engineering/Data, Director of AI/ML, Security Engineer, AI Security Engineer, IT Professional

Related on AIssential

Open in AIssential →

Editorial summary, takeaway, and curation by AIssential. Original article published by IBM - Announcements (Artificial intelligence).