Artificial intelligence (AI) is transforming cybersecurity by strengthening defensive capabilities while also increasing the speed and accessibility of offensive activity. Frontier AI cyber models can now identify vulnerabilities, support exploit development, analyze malicious code, and assist with remediation, demonstrating the growing role of AI in both attack and defense.
Although these models lower the technical barrier to sophisticated cyber operations, they have not yet given rise to fundamentally new classes of cyberattack, or the emergence of a new malware family. Instead, they make existing tactics faster, more scalable, and more accessible, while also allowing potential exposure of long-standing vulnerabilities and weak security practices that organizations have failed to address.
As AI becomes more embedded in cybersecurity operations, organizations will need stronger governance, tighter controls, and continued human oversight to ensure these tools are deployed responsibly and securely. In the (re)insurance context, these developments are expected to influence underwriting, risk selection, and accumulation modeling, as AI-driven cyber capabilities alter both the threat landscape and the factors used to assess organizational cyber maturity.