Cybercrime Losses Surge as Hackers Embrace AI

A Record Year for Cybercrime Losses

The IC3 report, which compiles data from over one million complaints, shows that cybercrime losses rose sharply compared to the previous year. The FBI attributed much of this increase to well-organized criminal operations that continue to refine their techniques and scale their activity. Investment fraud and business email compromise (BEC) once again accounted for a substantial share of total losses, reflecting how attackers are focusing on schemes that promise high financial returns with comparatively low risk.

While cybercrime has been steadily increasing for years, federal investigators point out that the speed, believability, and automation of scams have reached new levels—largely due to advances in artificial intelligence.

How AI Is Changing the Threat Landscape

Artificial intelligence has emerged as a powerful tool for cybercriminals. The FBI reports tens of thousands of complaints tied to AI-enabled scams, with losses reaching hundreds of millions of dollars. These attacks often rely on AI-generated content—such as fake emails, synthetic voices, impersonated executives, or fabricated social media profiles—to appear convincing and personalized.

Unlike traditional phishing attempts that may contain obvious errors or generic messaging, AI-powered attacks are harder to detect. Threat actors can now generate realistic messages at scale, tailor content to specific individuals, and adapt quickly based on a victim’s response. This evolution significantly increases both the success rate and the financial impact of cybercrime.

Business Email Compromise and Investment Fraud Remain Top Risks

Among the most damaging attack types, business email compromise remains a persistent threat to organizations of all sizes. By impersonating executives, vendors, or trusted partners, attackers trick employees into wiring funds or sharing sensitive information. AI has made these impersonations far more convincing, reducing the chances that recipients will question the request.

Investment fraud also continues to be a leading driver of losses, often leveraging sophisticated social engineering tactics. In many cases, victims are drawn into long-running schemes that build trust over time before financial demands escalate. These scams are increasingly supported by AI-driven communication and fabricated online identities, making them difficult to identify until significant damage has already occurred.

What This Means for Organizations

The FBI’s findings point to a critical reality: cybercrime is no longer just an IT issue—it is a business risk with direct financial, reputational, and operational consequences. As AI tools become more accessible to threat actors, organizations must assume that scams will continue to grow more targeted and more believable.

Security awareness training, strong internal controls, and clear verification processes—especially around financial transactions—remain essential. At the same time, organizations are being challenged to rethink their defenses in an environment where attackers can generate realistic deception with minimal effort.

Preparing for an AI-Driven Cyber Future

The rise of AI-enabled cybercrime signals a turning point. Enterprises must invest not only in technical safeguards, but also in employee education and process-driven defenses. Verifying requests for payment changes, training staff to recognize subtle red flags, and maintaining a healthy culture of skepticism are increasingly important steps.

As the IC3 report makes clear, the threat landscape is evolving faster than ever. Businesses that adapt their cybersecurity strategies to account for AI-powered deception will be better positioned to reduce risk and limit financial exposure in the years ahead.

Source:
Tim Keary, “FBI Reports $20.8 Billion Lost To Cybercrime As Hackers Turn To AI,” Forbes, April 7, 2026.
Forbes article