Press release

Emerging Cybersecurity Threats May Come From Unexpected Sources as Teens and AI-Savvy Employees May Perpetrate More Attacks Next Year

0
Sponsored by Businesswire

When it comes to cybercriminals and threat vectors, expect the unexpected. Experian’s 12th annual Data Breach Industry Forecast includes five predictions for 2025 covering a range of potential trends with AI at the forefront including growing sources of threats such as AI-savvy teens and fresh targets for hackers of AI power centers.

Global data breaches show no signs of slowing down as this year has already exceeded 2023 in the number of data breaches and consumers impacted. Businesses and consumers need to stay vigilant and keep an eye on these five predictions for 2025:

  • Smells Like Teen Secret: Today, the world of cyber hacking is not confined to grown ups nor is the fallout. According to the FBI, the average age of someone arrested for cybercrime is 19 vs. 37 for any crimei. Many teens will have been recruited into the “business” by more sophisticated fraudsters, who reach them through online gaming, chat and social media. As more states pass legislation against revenge porn, cyberbullying, and other forms of online fraudulent attacks, we may see a dramatic increase in the number of teens prosecuted for hacking and fraud.

  • The Enemy Within: Internal Fraud Will Rise: As more companies continue to train their employees on the responsible use of AI, we could see a marked increase in the use of that AI education by those very same employees for internal theft, sensitive information sourcing, and much more. Next year could see at least one global brand impacted by fraud perpetrated by an insider to whom it provided educational AI training.

  • Power-Hungry Data Centers Become Favored Target: Global cyberattackers have had large data centers in their sights for years, but one clear attack vector has emerged with the exponential growth of consumer and business use of generative AI: power. On average, a single ChatGPT query uses nearly 10 times more electricity to process than a standard Google searchii. All these entities represent new attack surfaces that could be disrupted by bad actors. Globally, the problem is exacerbated. Cloud infrastructure and data center technology and security vary wildly from country to country. Within the next year, cyberattackers may successfully jeopardize a nation-state’s cloud infrastructure through an attack on the power needed to run it.

  • Eating Their Own: Predators Become Prey: A recent story of hackers being duped by sophisticated malware from a more malicious hacker and losing their funds points to a fast-growing trend in the high-stakes world of cybercrime: the predators becoming the prey. The next year may see a marked increase in hacker-on-hacker attacks either for political or monetary reasons. These incidents highlight how the boundaries between predator and prey in the digital world are increasingly blurred.

  • Dynamic Identification is Next Defense Against Fraud: Normal 256 Bit Encryption is becoming obsolete, and AI-driven fraud is increasing in sophistication so quickly that fraudsters will soon be able to create virtually undiscernible proof-of-life documents that will fool even the most discriminating eye or identification system. To combat this evolving reality, nation-states and government agencies could move to dynamic identification that will replace static driver’s licenses and social security cards with dynamic PII that continually changes like an online 3D barcode used for event tickets.

“While supply chain breaches and ransomware dominated the cyber landscape in 2024, AI-related incidents will likely become a major headline maker in 2025,” said Michael Bruemmer, vice president of Global Data Breach Resolution at Experian. “Investments in cybersecurity will increase to tackle this emerging threat while hackers are having a field day leveraging it for everything from phishing attacks and password cracking to producing malware and deepfakes.”

To access the complimentary report, visit https://www.experian.com/data-breach/knowledge-center/reports-guides/data-breach-industry-forecast.

“We expect that globally data breaches continue at the current pace next year, with ransomware being even more sophisticated with the use of AI,” added Jim Steven, Head of Crisis and Data Response Services at Experian Global Data Breach Resolution in the United Kingdom. “We may also see threat actors escalating risks to gain greater rewards and the use of consumer data to damage reputations rising in 2025.”

Experian Global Data Breach Resolution offers international resources for companies impacted by a security incident and services include IdentityWorksSM Global, multilingual call centers, and notifications covering more than 100 countries.

To learn more about Experian Global Data Breach Resolution, go to https://www.experian.com/business/solutions/fraud-management/global-data-breach-services

About Experian

Experian is the world’s leading global information services company. During life’s big moments – from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers – we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organisations to prevent identity fraud and crime.

We have 22,000 people operating across 32 countries and every day we’re investing in new technologies, talented people, and innovation to help all our clients maximise every opportunity. With corporate headquarters in Dublin, Ireland, we are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.

Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group.

ihttps://www.wsj.com/tech/cybersecurity/arion-kurtaj-hacker-468e6cad

iihttps://www.goldmansachs.com/insights/articles/AI-poised-to-drive-160-increase-in-power-demand