AI-powered phishing attacks are set to become a cybersecurity nightmare in 2026.
Concerns about identity theft are growing, with 68% of users viewing it as the biggest threat to personal safety in the digital environment.
According to a new warning from the World Economic Forum (WEF), generative AI is making online scams more sophisticated and harder to detect than ever before, pushing cybersecurity risks far beyond ransomware and directly impacting both businesses and consumers.
A WEF survey revealed that 73% of CEOs admitted they or someone in their personal or professional network had been affected by online fraud in 2025. This figure reflects a clear shift from sophisticated ransomware attacks to AI-based scams that are easier to deploy but extremely difficult to detect.
Jeremy Jurgens, CEO of the WEF, noted that the current challenge is not just understanding the threat, but taking collective action. “To build cybersecurity resilience, we need coordination among governments, businesses, and technology companies to protect trust and stability in a world increasingly reliant on AI,” he emphasized.
It's not just businesses that are feeling the pressure; consumers are too. According to Experian, a global credit data and analytics firm headquartered in Ireland, 68% of people view identity theft as their biggest concern, even surpassing the fear of having their credit card information leaked.
Data from the U.S. Federal Trade Commission (FTC) further reinforces this concern, with losses from consumer fraud projected to reach $12.5 billion in 2024, a 25% increase from the previous year.
AI makes scams "easy to do, hard to detect".
According to the WEF, 62% of business leaders have faced scams via email, voicemail, or text message, while 37% reported invoice and payment fraud, and 32% noted instances of identity theft.
The main reason is that AI generation is lowering the barriers for cybercriminals. Now, criminals can quickly:
- Personalize phishing emails for each victim.
- Copy the voice of an acquaintance or leader.
- Create fake messages and calls that look real.
The WEF also warned that AI increases risks for children and women, groups increasingly targeted in impersonation and the misuse of fake images.
The report reveals that many organizations lack cybersecurity personnel and expertise, while improper AI deployment can open up new vulnerabilities instead of enhancing protection.
From a consumer perspective, the American Consumer Federation's Scamplified report (May 2025) warns that AI tools are blurring traditional "scam identifiers," making fake emails, voices, and alerts increasingly difficult to distinguish.
What should users do to protect themselves?
Experts recommend the following simple but extremely important principles:
Slow down and ask questions before receiving calls, texts, or emails that create a sense of urgency.
- Do not share personal information, financial details, or passwords from contacts who have not been asked to.
- Verify the information yourself by checking the official phone number and website instead of trusting provided links.
- Use strong, unique passwords for each service, and enable multi-factor authentication.
- Report suspected scams to the authorities when necessary.
In summary, as AI-based scams continue to evolve in 2026 and beyond, user vigilance remains the first and most important line of defense. Technology may change rapidly, but the habit of checking, verifying, and protecting personal information remains key to avoiding becoming a victim in the AI era.
