📊 Full opportunity report: The Frameworks Can’t See the Thing That Matters: A Year of AI-Enabled Cyber Threats on ThorstenMeyerAI.com — validation score, market gap, and execution plan.
TL;DR
A year-long analysis shows AI is enabling cyber attackers to become more sophisticated and less detectable by traditional metrics. Threat assessment models are no longer reliable, raising new security challenges.
New research from Anthropic indicates that AI is fundamentally altering the landscape of cyber threats, making malicious actors more capable and harder to assess using traditional metrics. The report, based on an analysis of over 800 banned accounts, demonstrates that AI-enabled techniques are increasingly used for post-compromise activities, and that the old threat assessment models no longer reliably distinguish high-risk actors from less dangerous ones.
Anthropic examined 832 accounts banned for malicious cyber activity between March 2025 and March 2026, mapping their techniques onto the MITRE ATT&CK framework. The findings show that 67.3% of these accounts used AI to prepare for attacks, primarily in malware creation. More concerning is the shift toward AI-assisted lateral movement and network navigation, which increased significantly over the year.
One key insight is that AI is enabling less skilled actors to perform complex, previously skill-dependent tasks such as account discovery and lateral movement. The proportion of actors engaging in higher-risk activities rose from 33% in the first half of the year to 56% in the second, indicating a rapid escalation in threat sophistication. Furthermore, the traditional markers of threat level—technique diversity and tool choice—no longer correlate with actual danger, undermining existing threat assessment heuristics.
The frameworks can’t see the thing that matters
For decades, danger meant which techniques an attacker commands. A year of real AI-enabled attacks — 832 banned accounts mapped onto MITRE ATT&CK — shows that signal breaking, just as a new, harder-to-see one takes over.
A year of real misuse, mapped to the standard taxonomy
A window, not a census — these are the cases with enough detail to assess techniques thoroughly. Inside it, the risk level climbed fast.
WHAT WAS STUDIED
THE RISK CLIMB · MEDIUM-OR-HIGHER ACTORS
Python Scripting for Cybersecurity: Linux Edition: Volume 2 – Log Analysis, Network Visibility, and Threat Detection with Hands-On Python Projects
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
“More techniques” stopped meaning “more dangerous”
The old heuristic: count the techniques, judge the tooling. AI dissolved it — because the model supplies the techniques either way. Watch the old signal fail, then watch what it misses.
Risk score vs. technique count
Two ways to read the same attacker. One is going blind. Press play.
OSINT 2.0: AI-Powered Open-Source Intelligence for Beginners (OSINT 2.0 — Artificial Intelligence for Open-Source Intelligence and Cyber Investigations Book 1)
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Deeper into the attack — and into less-skilled hands
Across the year, AI use drifted from getting in toward acting once already inside — the operationally demanding stages that used to require an expert.
The attack lifecycle · where AI is now applied
The center of gravity moved right — toward post-compromise work.
The Practice of Network Security Monitoring: Understanding Incident Detection and Response
Used Book in Good Condition
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
From “what they know” to “what they’ve built”
The report sorts the signals into three tiers — one dead, one fading, one durable.
Technique count & tooling
16 vs. 20 between novice and expert; platform doesn’t correlate. The model supplies the techniques either way.
Where in the lifecycle AI is applied
Concentrating on operationally demanding, post-compromise stages is a better signal — but it’s eroding as the whole population heads there.
The scaffolding around the model
Architectures that let the model chain stages and run with minimal human input. Not what they know — whether they’ve built a system that lets AI run the attack.
Site Assessment and Remediation for Environmental Engineers (Fundamentals of Environmental Engineering)
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Fixing the map before the territory moves again
A taxonomy that can’t name the most dangerous behavior on the field will quietly mislead the people relying on it. The response runs in two directions.
Fed back into the models
The findings informed safeguards on the most capable models, built to detect & block some of what was observed:
- Blocking malware development
- Blocking mass data exfiltration
- Putting tools in defenders’ hands first (Project Glasswing)
Taking it to the source
Following the Verizon work, Anthropic says it’s in discussions with MITRE about how ATT&CK might evolve:
- A vocabulary for agentic orchestration
- Naming the scaffolding that makes a model an operator
- An interactive technique visualization on the Red blog
Reading it in proportion
- The 832 cases are a detailed subset, not the full population — the precise percentages are directional, not definitive.
- “More autonomous” is not “fully autonomous” — even the standout case needed human input at key moments, which is itself a place for defenders to intervene.
- This is one vendor’s window — the company with visibility into misuse of its own model, publishing what it found. The right thing to do with the data, and worth remembering as you read it.
Threat Assessment Models Are No Longer Reliable
This development matters because it challenges the core assumptions used by cybersecurity teams to evaluate threat actors. If skill and tool diversity no longer indicate danger, defenders must rethink how they identify and prioritize threats. The democratization of advanced attack techniques via AI means that even less experienced actors can carry out sophisticated operations, increasing the overall threat landscape’s complexity and unpredictability.
AI’s Growing Role in Cyberattack Techniques
Traditionally, threat assessment has relied on counting techniques and analyzing tools to gauge attacker skill and danger. However, recent advances in AI have automated complex tasks like lateral movement and account discovery, previously accessible mainly to highly skilled hackers. This shift has been accelerated by the availability of large language models and automation tools, which now enable a broader range of malicious actors to execute advanced techniques.
Last year, security reports highlighted rising attack volumes and new tactics, but the latest findings from Anthropic reveal a deeper problem: AI is making threat actors more capable, not just more numerous. The trend suggests a fundamental change in how threat intelligence must be approached in the coming years.
“Traditional indicators like technique diversity and tool choice no longer reliably distinguish high-risk actors from lower-risk ones.”
— Anthropic research team
Unclear Impact on Future Threat Detection Strategies
It remains uncertain how cybersecurity defenses will adapt to this new landscape. While the report identifies the decline of traditional threat indicators, it is not yet clear what new metrics or methods will effectively differentiate dangerous actors in an AI-enabled environment. The pace of technological change and attacker adaptation may outstrip current defensive capabilities, but specific solutions are still under development.
Next Steps for Cybersecurity in an AI-Driven Era
Security organizations will need to develop new threat assessment frameworks that account for AI’s role in attack techniques. This may involve investing in AI-aware detection tools, updating threat intelligence processes, and training analysts to recognize behavioral patterns beyond technique count. Additionally, collaboration between industry and researchers will be vital to stay ahead of rapidly evolving attack methods.
Key Questions
How is AI changing the way cyber attackers operate?
AI is enabling attackers to automate complex tasks like lateral movement and account discovery, lowering the skill barrier and increasing attack sophistication.
Why can’t traditional threat assessment models detect these new threats?
Because AI allows even less skilled actors to perform high-risk activities, the usual indicators such as technique diversity and tool choice are no longer reliable markers of threat level.
What should cybersecurity teams do to adapt?
Teams should develop new detection methods that focus on behavioral patterns and operational signals, and incorporate AI-awareness into threat intelligence processes.
Is there a risk that AI will make all attackers equally dangerous?
While AI democratizes attack techniques, the level of operational complexity and the scaffolding around models still influence threat impact. However, the overall risk landscape is becoming more unpredictable.
Source: ThorstenMeyerAI.com
