AI-Powered Phishing Surges as CISOs Struggle with Incident Coordination
82.6% of phishing emails now use AI, while 90% of security leaders report poor incident response readiness.
AI Now Embedded in the Majority of Phishing Attacks
A recent report found that 82.6% of phishing emails analyzed between September 15, 2024 and February 14, 2025 exhibited some use of AI. This marks a significant shift in attacker tactics, with artificial intelligence becoming standard across phishing campaigns rather than an exception.
Critical Gaps in Incident Response Readiness
A Sygnia CISO survey on state of IR readiness uncovered alarming weaknesses in organizational preparedness:
- 90% of respondents would struggle to coordinate stakeholders during a major incident
- 75% say uncertainty around legal and comms involvement delays decision-making during incidents
These findings suggest that even as AI-driven attacks accelerate, many organizations lack the internal coordination and clarity needed to respond effectively. The combination of faster, AI-powered attacks with slower, uncertainty-laden decision-making creates a dangerous gap that attackers can exploit.
Source: The Hacker News