📊 Full opportunity report: The Frameworks Can’t See the Thing That Matters: A Year of AI-Enabled Cyber Threats on ThorstenMeyerAI.com — validation score, market gap, and execution plan.
TL;DR
A year-long analysis shows AI is increasing cyberattack complexity and democratizing dangerous techniques. Traditional threat indicators no longer reliably distinguish high-risk actors, raising new security challenges.
New research from Anthropic indicates that AI is enabling less skilled cybercriminals to carry out more sophisticated and deeper attacks, fundamentally altering threat assessment methods used by security teams.
Anthropic analyzed 832 accounts banned for malicious activity between March 2025 and March 2026, mapping their techniques onto the MITRE ATT&CK framework. The findings show a sharp increase in AI use for attack preparation, especially in activities like malware creation and lateral movement. Over the year, the proportion of actors classified as medium risk or higher rose from 33% to 56%, driven by increased AI deployment in operational attack phases.
Importantly, the report highlights that AI allows less skilled actors to perform complex tasks—such as account discovery and lateral movement—that previously required significant expertise. This shift diminishes the reliability of traditional threat indicators, like the number of techniques used or the platform employed, to gauge attacker danger. Instead, the focus shifts to the sophistication of the attack scaffolding, which now depends more on how attackers integrate AI into their operations.
The frameworks can’t see the thing that matters
For decades, danger meant which techniques an attacker commands. A year of real AI-enabled attacks — 832 banned accounts mapped onto MITRE ATT&CK — shows that signal breaking, just as a new, harder-to-see one takes over.
A year of real misuse, mapped to the standard taxonomy
A window, not a census — these are the cases with enough detail to assess techniques thoroughly. Inside it, the risk level climbed fast.
WHAT WAS STUDIED
THE RISK CLIMB · MEDIUM-OR-HIGHER ACTORS
cybersecurity threat detection software
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
„More techniques“ stopped meaning „more dangerous“
The old heuristic: count the techniques, judge the tooling. AI dissolved it — because the model supplies the techniques either way. Watch the old signal fail, then watch what it misses.
Risk score vs. technique count
Two ways to read the same attacker. One is going blind. Press play.
AI-powered malware analysis tools
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Deeper into the attack — and into less-skilled hands
Across the year, AI use drifted from getting in toward acting once already inside — the operationally demanding stages that used to require an expert.
The attack lifecycle · where AI is now applied
The center of gravity moved right — toward post-compromise work.
network security monitoring devices
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
From „what they know“ to „what they’ve built“
The report sorts the signals into three tiers — one dead, one fading, one durable.
Technique count & tooling
16 vs. 20 between novice and expert; platform doesn’t correlate. The model supplies the techniques either way.
Where in the lifecycle AI is applied
Concentrating on operationally demanding, post-compromise stages is a better signal — but it’s eroding as the whole population heads there.
The scaffolding around the model
Architectures that let the model chain stages and run with minimal human input. Not what they know — whether they’ve built a system that lets AI run the attack.
cyber attack simulation kits
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Fixing the map before the territory moves again
A taxonomy that can’t name the most dangerous behavior on the field will quietly mislead the people relying on it. The response runs in two directions.
Fed back into the models
The findings informed safeguards on the most capable models, built to detect & block some of what was observed:
- Blocking malware development
- Blocking mass data exfiltration
- Putting tools in defenders‘ hands first (Project Glasswing)
Taking it to the source
Following the Verizon work, Anthropic says it’s in discussions with MITRE about how ATT&CK might evolve:
- A vocabulary for agentic orchestration
- Naming the scaffolding that makes a model an operator
- An interactive technique visualization on the Red blog
Reading it in proportion
- The 832 cases are a detailed subset, not the full population — the precise percentages are directional, not definitive.
- „More autonomous“ is not „fully autonomous“ — even the standout case needed human input at key moments, which is itself a place for defenders to intervene.
- This is one vendor’s window — the company with visibility into misuse of its own model, publishing what it found. The right thing to do with the data, and worth remembering as you read it.
Implications of AI-Driven Attack Democratization
This development means that cyber threats are becoming more accessible and harder to predict using traditional metrics. Security teams can no longer rely solely on the number of techniques or tools to assess threat levels, as AI enables even less experienced actors to execute complex, deep-infiltration attacks. This shift increases the risk of widespread, sophisticated breaches and challenges existing defense frameworks.
Evolution of Cyberattack Techniques and Assessment Methods
Historically, threat assessment depended on counting techniques and analyzing tools to gauge attacker skill and danger. The assumption was that more techniques and advanced tools indicated higher threat levels. However, recent data shows AI’s role in automating and simplifying complex attack steps, making it easier for less skilled actors to perform deep network intrusions. The trend aligns with broader concerns about AI democratizing offensive capabilities across cybercriminal communities.
„Traditional heuristics for threat assessment are no longer reliable in the AI-enabled attack environment.“
— Anthropic report authors
Unclear Impact of AI on Future Threat Assessment
It remains uncertain how quickly security practices will adapt to these changes and whether new indicators will emerge to replace traditional metrics. The long-term effectiveness of AI in both attack and defense contexts is still developing, and further research is needed to understand these dynamics fully.
Next Steps for Cybersecurity Defense Strategies
Security organizations are expected to revisit threat models, incorporating AI activity patterns as key indicators. Increased investment in AI-aware detection tools and threat intelligence will likely become a priority. Monitoring how attackers evolve their use of AI will be critical in the coming months to anticipate and counter new attack techniques.
Key Questions
How does AI make attackers more dangerous?
AI automates complex attack tasks, enabling less skilled actors to perform sophisticated operations like lateral movement and account discovery, which previously required expertise.
Why can’t traditional threat indicators identify high-risk attackers anymore?
Because AI allows even low-skill actors to execute deep-infiltration techniques, the number of techniques and tools no longer correlates well with attacker danger.
What are the implications for cybersecurity defenses?
Defenders must update their threat assessment methods, focusing more on attack scaffolding and AI activity patterns rather than just techniques or tools used.
Will this trend continue or accelerate?
While the trend suggests increasing AI-enabled attacks, the pace of technological and strategic adaptation by security teams will influence future threat levels.
What can organizations do now to prepare?
Invest in AI-aware detection systems, enhance threat intelligence, and train security personnel to recognize AI-driven attack behaviors.
Source: ThorstenMeyerAI.com
