Experian Forecasts AI-Driven Cybersecurity Threats for 2025

AI power centres are fresh targets for hackers - Experian

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community. Michael Bruemmer, vice president of global data breach resolution at Experian, highlights that: "While supply chain breaches and ransomware dominated the cyber landscape in 2024, AI-related incidents will likely become a major headline maker in 2025. Investments in cybersecurity will increase to tackle this emerging threat while hackers are having a field day leveraging it for everything from phishing attacks and password cracking to producing malware and deepfakes." Jim Steven, head of crisis and data response services at Experian global data breach resolution, adds that: "We expect that globally data breaches continue at the current pace next year with ransomware being even more sophisticated with the use of AI. We may also see threat actors escalating risks to gain greater rewards and the use of consumer data to damage reputations rising in 2025." According to Experian, businesses and consumers need to stay vigilant and keep on eye on these five predictions for 2025: 1. There could be a dramatic increase in the number of teens prosecuted for hacking and fraud. The FBI reveals that the average age of someone arrested for cybercrime is 19 vs. 37 for any other crime. More and more teens are expected to be recruited by more sophisticated fraudsters through online gaming and social media. 2. One global brand may be impacted by fraud perpetrated by an insider who was provided educational AI training. Companies continue to train their employees on the responsible use of AI, but this could result in the use of that AI education by those very same employees for internal theft, sensitive information sourcing, and much more. 3. Cyberattackers may jeopardise a nation's cloud infrastructure through an attack on the power required to run it. Use of generative AI has created an exponentially large and clear attack vector for cyberattackers, particularly those who have had large data centres in their sights for years and understand that cloud infrastructure and data centre technology and security vary from country to country. 4. There may be a marked increase in hacker-on-hacker attacks either for political or monetary reasons. Hackers are now being duped by sophisticated malware from a more malicious hacker and losing their funds. These incidents highlight how the boundaries between predator and prey in the digital world are increasingly blurred. 5. Dynamic identification could replace driver's licenses and social security cards with PII that continually changes. Normal 256 Bit Encryption is becoming obsolete, and AI-driven fraud is increasing in sophistication so quickly that fraudsters will soon be able to create virtually undiscernible proof-of-life documents that will fool even the most discriminating eye or identification system.

Experian warns of AI and teen hackers in 2025 predictions By Investing.com

Experian (OTC:EXPGF), a global leader in consumer credit reporting, has released its 12th Annual Data Breach Industry Forecast, which provides insights into potential cybersecurity trends for 2025. The report suggests that emerging threats could arise from AI-savvy teenagers and employees with AI training, as global data breaches continue to rise. The forecast outlines five key predictions for the next year. It indicates a potential increase in cybercrimes committed by teenagers, who may be lured into hacking through online platforms such as gaming and social media. The FBI has noted that the average age of cybercrime arrests is 19, compared to 37 for other crimes. As legislation against online crimes like revenge porn and cyberbullying becomes more prevalent, the number of teens prosecuted could see a significant rise. Another prediction points to the possibility of insider fraud within companies. Employees trained in AI could misuse their knowledge to commit fraud against their employers. Experian suggests that at least one major global brand could fall victim to such internal threats in the coming year. Data centers, particularly those powering AI technologies, are also highlighted as potential targets for cyberattacks due to their high energy consumption. An attack could disrupt a nation-state's cloud infrastructure by targeting the power supply needed for these data centers. The forecast also notes a trend of cybercriminals targeting each other, with an expected increase in hacker-on-hacker attacks for political or financial gain. This indicates a shift in the cybercrime landscape where even the perpetrators are not safe from attacks. To counteract the sophistication of AI-driven fraud, Experian predicts a move towards dynamic identification to replace traditional static identification methods. This would involve continuously changing personal identification information to prevent fraudsters from creating convincing fake documents. Michael Bruemmer, vice president of Global Data Breach Resolution at Experian, emphasized the growing concern over AI-related incidents, which are expected to become a major focus in 2025. He mentioned that while supply chain breaches and ransomware were dominant in 2024, AI poses a new challenge that will likely lead to increased investments in cybersecurity. Jim Steven, Head of Crisis and Data Response Services at Experian Global Data Breach Resolution in the United Kingdom (TADAWUL:4280), echoed these sentiments. He anticipates that data breaches will continue at their current rate, with ransomware becoming more sophisticated through AI. He also foresees a rise in the use of consumer data for reputation damage. Experian offers international resources for companies affected by security incidents, including IdentityWorksSM Global, multilingual call centers, and notifications in over 100 countries.