Experts Urge AI Cybersecurity Regulation as AI‑Powered Attacks Surge 44%

**TL;DR** AI-powered cyberattacks are rapidly increasing, pushing experts to call for urgent regulatory action to protect against evolving threats.

The cybersecurity landscape faces significant disruption as artificial intelligence (AI) elevates threat capabilities. While AI offers powerful tools for defense, adversaries now leverage it to launch more sophisticated attacks, challenging traditional security paradigms.

A 2026 IBM study reported a 44% year-over-year increase in cyberattacks targeting public-facing software, many of which employed AI. This surge indicates a fundamental shift in attacker methodologies. The complexity of these new threats is exemplified in AI-driven phishing, where advanced models eliminate telltale misspellings and grammatical errors that once allowed individuals to easily spot scams. This evolution makes AI a potent weapon for targeted social engineering.

This escalating threat creates an asymmetrical battle; attackers need only succeed once, while defenders must prevail continuously. This dynamic, intensified by AI, underscores the urgency for robust defense strategies and, increasingly, regulatory frameworks. The shift in the threat model means external, AI-driven commands can trick internal systems, moving beyond traditional insider threats.

Security teams and organizations face pressure to adapt rapidly. Implementing regulation poses its own challenges, requiring clear definitions of liability and mandating specific security measures for hardware and software. The practical impact includes the necessity for comprehensive documentation and inventories of all running code, a difficult but critical step for identifying vulnerabilities. The debate around liability will continue as industry and government leaders determine the most effective path forward for regulating AI in cybersecurity. Watch for upcoming policy proposals and industry standards aimed at mitigating these advanced threats.