CrowdStrike says AI is officially supercharging cyber attacks: Average breakout times hit just 29 minutes in 2025, 65% faster than in 2024 – and some attacks take just seconds
Cyber criminals are actively exploiting AI systems and injecting malicious prompts into legitimate generative AI tools
AI is expanding enterprise attack surfaces at alarming speed, according to new research from CrowdStrike, with AI-enabled attacks surging 89% over the last year and systems now a top target for cyber criminals.
Findings from CrowdStrike's 2026 Global Threat Report show cyber criminals are actively exploiting AI systems themselves, injecting malicious prompts into legitimate generative AI tools at more than 90 organizations to generate commands for credential and cryptocurrency theft.
Threat actors have also been observed exploiting vulnerabilities in AI development platforms to establish persistence and deploy ransomware, while others have established malicious AI servers impersonating trusted services to intercept sensitive data.
"As AI is embedded into development pipelines, SaaS platforms, and operational workflows, AI systems themselves become part of the attack surface," said CrowdStrike CEO George Kurtz.
"Adversaries exploited legitimate AI tools by injecting malicious prompts that generated unauthorized commands. As innovation accelerates, exploitation follows."
Prompt injection attacks gain traction
Researchers warned that cyber criminals are increasingly experimenting with prompt injection techniques to interfere with AI-enabled security workflows.
In one case, hackers embedded hidden prompt content within a phishing email to confuse or disrupt AI-based email triage, making it more likely that the message would evade detection.
Sign up today and you will receive a free copy of our Future Focus 2026 report - the leading resource for IT decision-maker insight on priorities and investment areas in AI, security and more.
"Though these techniques have not yet demonstrated consistent effectiveness at scale, they illustrate how attackers may seek to manipulate AI systems indirectly by targeting their inputs rather than exploiting the systems themselves," the researchers warned.
Attacks speeds are surging
AI is also speeding up attacks, CrowdStrike found, with the average breakout time falling to just 29 minutes in 2025, 65% faster than in 2024.
The fastest observed breakout took just 27 seconds, and in one case data exfiltration began within four minutes of initial access.
“This is an AI arms race. Breakout time is the clearest signal of how intrusion has changed. Adversaries are moving from initial access to lateral movement in minutes,” said Adam Meyers, head of counter adversary operations at CrowdStrike.
“AI is compressing the time between intent and execution, while turning enterprise AI systems into targets. Security teams must operate faster than the adversary to win.”
State-sponsored hackers are getting in on the act
Notably, the use of AI among state-sponsored hackers surged by 89%. CrowdStrike warned that the Russian state-linked group Fancy Bear was observed deploying LLM-enabled malware last year to automate reconnaissance and document collection.
Punk Spider, the group behind Akira ransomware, was also observed using AI-generated scripts to accelerate credential dumping and erase forensic evidence.
Meanwhile, North Korea-linked incidents rose by more than 130%. Activity by Famous Chollima more than doubled, with the group using AI-generated personas to scale insider operations – a common tactic employed by North Korean-linked groups over the last two years.
FOLLOW US ON SOCIAL MEDIA
Make sure to follow ITPro on Google News to keep tabs on all our latest news, analysis, and reviews.
You can also follow ITPro on LinkedIn, X, Facebook, and BlueSky.
Emma Woollacott is a freelance journalist writing for publications including the BBC, Private Eye, Forbes, Raconteur and specialist technology titles.
-
The NCSC wants to build an AI-powered 'Cyber Shield' to protect the UK from hackersNews The aim is to create a national, sovereign defence capability to protect government agencies and critical infrastructure
-
IBM targets data center efficiency gains with new z17 and LinuxONE offeringsNews Cost, data center footprint, and performance improvements are coming for IBM Z and LinuxONE customers
-
'It’s a marker of where extortion tradecraft is heading': Cyber experts say they've identified the first case of ‘agentic ransomware’ – but there’s a catchNews While the JadePuffer ransomware has alarm bells ringing, it still needed a human in the loop
-
Three quarters of firms have halted AI projects over safety and security concerns – and cyber pros think things will deteriorate as models like Claude Mythos improveNews AI has become a leading problem for enterprise security teams, they can't automate their way out of trouble
-
OpenAI expands 'Daybreak' cyber program: New tools, partnerships, and a cyber-focused GPT-5.5 aim to help 'patch the world'News The company has added new tools, signed up partners, and released its GPT-5.5-Cyber model more widely
-
IT teams are bullish on AI tools, but they’re worried security practices can’t keep paceNews Executives and IT teams are at odds over the risks associated with AI adoption
-
‘These sorts of post-compromise techniques used to be restricted to actors with the technical knowledge to carry them out’: Anthropic warns AI is helping lower the bar for up-and-coming hackersNews AI is making it harder to differentiate between high and low-skilled actors
-
AI is shrinking attack windows, and it’s forcing a complete rethink of cyber resilience – here’s how organizations can prepareNews Commvault has urged companies to improve their business continuity and resilience plans in the face of flaws spotted by AI