New Research: AI-Driven Cybercrime Led to a 389% Increase in Ransomware Victims

The 2026 Global Threat Landscape Report from FortiGuard Labs marks a turning point in the cyber‑threat ecosystem: AI‑powered tools are no longer experimental but mainstream weapons. The data shows a staggering 389% year‑over‑year rise in ransomware victims, while traditional brute‑force attacks slipped 22%, reflecting a strategic pivot toward high‑value, low‑noise exploits. AI‑enabled services such as FraudGPT, WormGPT, and BruteForceAI automate credential harvesting, vulnerability scanning, and payload generation, allowing criminal groups to scale attacks with unprecedented speed and precision.

Manufacturing emerged as the hardest‑hit industry, accounting for 1,284 ransomware cases, followed by business services and retail. These sectors share a common weakness: legacy OT systems and fragmented security stacks that struggle to detect AI‑crafted anomalies. FortiGuard’s chief security strategist Derek Manky stresses that defending against agentic AI requires an ‘industrialized’ security posture—continuous monitoring, automated response, and AI‑augmented threat hunting. Organizations that embed machine‑learning models into their SOCs can shorten dwell time and outpace adversaries that now operate at machine speed.

Looking ahead, the convergence of generative AI and cybercrime is likely to deepen, expanding the pool of low‑cost crime‑as‑a‑service kits. Enterprises should prioritize investments in AI‑driven detection platforms, threat intelligence sharing, and workforce upskilling to interpret model outputs. Regulators may also tighten reporting requirements as ransomware payouts swell. Companies that proactively integrate AI into their defense architecture will not only mitigate financial loss but also preserve brand trust in an increasingly hostile digital landscape.