📊 Full opportunity report: The Frameworks Can’t See the Thing That Matters: A Year of AI-Enabled Cyber Threats on ThorstenMeyerAI.com — validation score, market gap, and execution plan.
TL;DR
A year-long analysis shows AI is increasingly used by cyberattackers to enhance their capabilities, blurring the lines between skilled and unskilled actors. This shift challenges traditional threat assessment methods and raises new security risks.
New research from Anthropic indicates that AI is significantly increasing the danger posed by cyberattackers, with even less skilled actors now capable of executing complex, post-compromise techniques. This development challenges long-standing threat assessment frameworks and has important implications for cybersecurity defenses.
Anthropic examined 832 accounts banned for malicious activity over a year, mapping their techniques onto the MITRE ATT&CK framework. The analysis found that a majority of these actors used AI to prepare for attacks, with 67.3% employing AI for malware creation. Notably, AI use for lateral movement and internal navigation increased markedly, with high-risk activities rising from 33% to 56% within six months. This trend indicates that AI is shifting the threat landscape deeper into compromised networks, enabling less skilled actors to perform sophisticated operations once inside a target system.
Furthermore, the report shows that traditional indicators of threat level—such as the number of techniques used or the tools employed—no longer reliably distinguish between high- and low-risk actors. Even actors with fewer techniques can now leverage AI to perform complex tasks, making threat assessment based on technique count obsolete. Instead, the key differentiator appears to be the extent to which attackers build scaffolding around their AI models, which remains a more durable indicator of danger.
The frameworks can’t see the thing that matters
For decades, danger meant which techniques an attacker commands. A year of real AI-enabled attacks — 832 banned accounts mapped onto MITRE ATT&CK — shows that signal breaking, just as a new, harder-to-see one takes over.
A year of real misuse, mapped to the standard taxonomy
A window, not a census — these are the cases with enough detail to assess techniques thoroughly. Inside it, the risk level climbed fast.
WHAT WAS STUDIED
THE RISK CLIMB · MEDIUM-OR-HIGHER ACTORS
Python Scripting for Cybersecurity: Linux Edition: Volume 2 – Log Analysis, Network Visibility, and Threat Detection with Hands-On Python Projects
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
“More techniques” stopped meaning “more dangerous”
The old heuristic: count the techniques, judge the tooling. AI dissolved it — because the model supplies the techniques either way. Watch the old signal fail, then watch what it misses.
Risk score vs. technique count
Two ways to read the same attacker. One is going blind. Press play.
AI-powered malware analysis tools
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Deeper into the attack — and into less-skilled hands
Across the year, AI use drifted from getting in toward acting once already inside — the operationally demanding stages that used to require an expert.
The attack lifecycle · where AI is now applied
The center of gravity moved right — toward post-compromise work.
network intrusion detection system
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
From “what they know” to “what they’ve built”
The report sorts the signals into three tiers — one dead, one fading, one durable.
Technique count & tooling
16 vs. 20 between novice and expert; platform doesn’t correlate. The model supplies the techniques either way.
Where in the lifecycle AI is applied
Concentrating on operationally demanding, post-compromise stages is a better signal — but it’s eroding as the whole population heads there.
The scaffolding around the model
Architectures that let the model chain stages and run with minimal human input. Not what they know — whether they’ve built a system that lets AI run the attack.
cybersecurity threat assessment tools
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Fixing the map before the territory moves again
A taxonomy that can’t name the most dangerous behavior on the field will quietly mislead the people relying on it. The response runs in two directions.
Fed back into the models
The findings informed safeguards on the most capable models, built to detect & block some of what was observed:
- Blocking malware development
- Blocking mass data exfiltration
- Putting tools in defenders’ hands first (Project Glasswing)
Taking it to the source
Following the Verizon work, Anthropic says it’s in discussions with MITRE about how ATT&CK might evolve:
- A vocabulary for agentic orchestration
- Naming the scaffolding that makes a model an operator
- An interactive technique visualization on the Red blog
Reading it in proportion
- The 832 cases are a detailed subset, not the full population — the precise percentages are directional, not definitive.
- “More autonomous” is not “fully autonomous” — even the standout case needed human input at key moments, which is itself a place for defenders to intervene.
- This is one vendor’s window — the company with visibility into misuse of its own model, publishing what it found. The right thing to do with the data, and worth remembering as you read it.
AI’s Role in Democratizing Cyberattack Capabilities
This shift means that cyber threats are becoming more accessible and less dependent on technical skill, increasing the risk of widespread, sophisticated attacks by less capable actors. It undermines existing threat assessment metrics and necessitates new approaches to cybersecurity that account for AI-driven capabilities.
Evolving Threat Landscape and the Rise of AI in Cybercrime
For decades, threat assessment relied on the assumption that more techniques and fancier tools indicated greater danger. However, recent developments show AI now automates complex attack phases, making even less skilled actors capable of executing high-impact operations. Previous reports, including Verizon’s 2026 Data Breach Investigations, have highlighted the growing role of automation in cyber threats, but this new analysis underscores a fundamental shift: AI is not just a force multiplier but a democratizer of cyberattack capabilities.
“Our analysis indicates a significant increase in AI use for lateral movement and internal navigation, which are key indicators of threat escalation.”
— Anthropic report author
Limitations and Unanswered Questions About AI-Driven Threats
While the analysis covers a substantial sample, it is not a comprehensive census of all malicious activity. It remains unclear how widespread these AI-enabled techniques are beyond the studied accounts, and whether new defensive measures can keep pace with rapidly evolving attacker capabilities. The long-term impact of AI on threat landscape complexity is still uncertain, as is the effectiveness of existing threat detection systems against these AI-empowered actors.
Monitoring AI-Driven Attack Trends and Developing New Defenses
Security organizations are expected to focus on developing advanced detection methods that do not solely rely on technique counts or tool signatures. Further research is likely to explore how to identify the scaffolding around AI models that indicates high threat levels. Policymakers and cybersecurity firms may also prioritize regulations and tools to counteract the democratization of complex attack techniques facilitated by AI.
Key Questions
How is AI changing the skill level required for cyberattacks?
AI automates complex tasks such as lateral movement and privilege escalation, allowing less skilled actors to carry out sophisticated operations that previously required technical expertise.
Why are traditional threat assessment metrics no longer reliable?
Because AI enables even actors with fewer techniques or simpler tools to perform high-impact, complex activities, making the number of techniques or tools used a poor indicator of threat level.
What are the implications for cybersecurity defenses?
Defenses must evolve to detect AI-empowered activities that do not rely on traditional signatures, focusing instead on behavioral patterns and the scaffolding around AI models.
Is this trend likely to accelerate?
Yes, as AI technology becomes more accessible and easier to deploy, the trend toward democratized attack capabilities is expected to continue, increasing the urgency for adaptive security measures.
What can organizations do to protect themselves?
Organizations should invest in AI-aware detection systems, monitor internal activity for signs of AI-assisted lateral movement, and update threat models to account for new attack techniques enabled by AI.
Source: ThorstenMeyerAI.com
