Report Shows AI-Enabled Threats As Top Concern

AI could help hackers take greater advantage of visibility shortcomings.

Computer Crime Concept 516607038 2125x1416 (1)
February 5, 2026

Team Cymru, a leading provider of cyber intelligence, recently unveiled its Voice of Cybersecurity Strategist Report. Findings showed that:

  • Despite increased investment, many organizations still operate with limited visibility of external attack surfaces and active threat infrastructure, leaving blind spots.
  • Meaningful gaps are being found between perceived readiness and operational capability, particularly around external visibility, threat intelligence, and AI-driven security priorities.
  • 50 percent of security practitioners say they experienced a major security breach in the past year.
  • 72 percent of those breached say their threat hunting program played a key role in preventing or mitigating the breach.
  • 38 percent report comprehensive, real-time visibility into threats beyond the network perimeter.
  • AI-enabled threats are the top emerging concern (22 percent), ahead of ransomware (20 percent) and cloud service vulnerabilities (17 percent).
  • 45 percent cite insufficient real-time threat intelligence as their biggest external threat intelligence gap.
  • 60 percent allocate 20 to 40 percent of their threat intelligence budget to external threat intelligence and monitoring, and 32 percent allocate more than 40 percent.
  • The ability to leverage AI is the top evaluation criterion for threat intelligence investments (52 percent).
  • AI-enhanced threat detection and response is ranked the most critical security capability (61 percent).

"The data shows many are still operating without the real-time external visibility needed to stay ahead,” said Joe Sander, CEO, Team Cymru. “This report validates what we hear every day from cyber defenders of all types: threat hunting and external intelligence can change outcomes, but only if organizations can translate threat data into action quickly.”

Investment and operating models are shifting toward external, technology-driven defense, with 92 percent of respondents allocating at least 20 percent of their threat intelligence budget to external threat intelligence and monitoring, including 32 percent who allocate more than 40 percent. 

When it comes to resourcing, 44 percent report a mostly technology-focused approach to balancing tools and people, signaling a push toward automation, orchestration, and integrated workflows to increase team efficiency.

Measuring value is increasingly tied to proactive outcomes. The primary metric respondents use to assess external threat intelligence effectiveness is spotting threats before they affect the organization (27 percent), followed closely by faster threat detection (26 percent). 

When communicating to boards and executive leadership, respondents most often cite the number of incidents prevented or detected (50 percent) and mean time to detect and respond (50 percent), reflecting a focus on tangible outcomes and operational speed.

The report also highlights why progress can stall. The biggest challenge to funding threat intelligence initiatives is a focus on compliance requirements over threat-driven investments (26 percent), followed by competing priorities within the security program (23 percent) and limited executive understanding of external threats (22 percent). 

Looking ahead, the top planned strategic shift over the next 12 to 24 months is increasing the efficiency of the existing security team (45 percent), alongside aligning with increasing regulatory compliance (40 percent) and consolidating threat intelligence suppliers (39 percent).

Related Stories
Coding
Cybersecurity
The Domino Effect of a Data Breach
Ai Your Photo
Cybersecurity
AI Won’t Replace the Cybersecurity Workforce, But It Will Redefine It
Ep157
Cybersecurity
Security Breach: Strengthening Your Weakest Links
Protection Background Technology Security 524882074 701x502 (1)
Cybersecurity
The Rise of Identity and Data Security Dependency
More in Cybersecurity
Cybersecurity
Automotive Ransomware Attacks More Than Doubled in 2025
More AI, expanded autonomous technologies and evolving threat actors are elevating cyber risks.
Automobile Cockpit, Various Information Monitors And Head Up Displays
Cybersecurity
SBOM Regs Rolled Back
The two Biden-era memoranda required agencies to obtain software security attestations before deployment.
Us Binary Flag Mirsad Sarajlic
Cybersecurity
Threats Targeting Employee Credentials Surge 389 Percent
Credentials are being stolen in as little as 14 minutes.
Protection Background Technology Security 524882074 701x502 (1)
Cybersecurity
Shadow AI Threats Grow
Productivity pressures are pushing many to bypass safeguards, increasing exposure to data leaks.
Insider Threat Leo Wolfert
Cybersecurity
The Domino Effect of a Data Breach
Here are some strategies to detect breaches faster and limit their capacity for damage.
Coding
Cybersecurity
AI Won’t Replace the Cybersecurity Workforce, But It Will Redefine It
AI is framed as a multi-faceted solution, but the conversation often goes off course.
Ai Your Photo
Cybersecurity
Security Breach: Strengthening Your Weakest Links
All the little things can kill a cybersecurity strategy, but there are ways to tie them all together.
Ep157
Cybersecurity
The Rise of Identity and Data Security Dependency
Predictions on what will shape industrial cybersecurity in 2026 and beyond.
Protection Background Technology Security 524882074 701x502 (1)
Cybersecurity
Securing the Edge in AI-Enabled Smart Factories
Growing data needs have manufacturers between a rock and a hard place.
Sase Supatman
Cybersecurity
How AI Is Transforming Cybersecurity Threats in 2026
Social engineering, deep fakes and more will benefit from the evolution of artificial intelligence.
Deepfake Orhan Turan
Cybersecurity
Inside The Mind of a Hacker
The report details how hackers are moving to a more collaborative, AI-enhanced approach.
General Cyberattack
Cybersecurity
Hacktivists Are an Overlooked Threat, but That Threat Is Increasing
Larger attack surfaces and complex supply chains offer opportunities for greater chaos.
Russian Hacker Dmitry Nogaev
Page 1 of 55
Next Page