Shining a light on the dark side of emerging technologies

For some time now, concerned business users have been discussing the possibilities of AI being a tool to increase the efficiency of cybercriminals. However, it can also be a welcome helper to bolster cyberdefense. Industry experts like Chucks Brooks also chose to focus on AI as a double-edged sword. 

In its Cost of a Data Breach Report 2025, IBM stated: “16% of breaches reportedly involved attackers using AI, often used in phishing and deepfake attacks.” Gartner predicts that by 2028, 25% of enterprise data breaches will trace back to AI.

Cybercriminals use AI in a variety of ways. Employing the technology, criminals can develop highly convincing and personalized phishing emails, and messages. AI-powered fraudsters can create deepfakes (AI-generated photos, videos, or audio) used to impersonate trusted individuals and fool victims into transferring funds or sharing sensitive information. AI-generated phishing emails, automated malware creation, and AI-driven social engineering pose significant challenges for aging cyberdefense mechanisms. 

Shadow AI makes its presence known

Shadow AI involves members of a company or organization adopting AI tools, such as generative AI or AI-powered SaaS applications, without IT's approval. As shadow AI proliferates everywhere, overworked IT teams are tasked with defining the actual scope and depth of the cybersecurity risks they face, and what new protections will be required. 

In the 2025 Cisco Cybersecurity Readiness Index, that company reported some concerning facts about shadow AI. Cisco noted that while 51% of the 8,000 companies they surveyed require their employees only use approved third-party GenAI tools, 22% have unrestricted access to publicly available tools. Overall, slightly under half of those companies believe their employees fully understand the security risks involved with AI — while 45% of respondents felt that they lacked the resources and expertise to conduct comprehensive AI security assessment in the first place.

One thing is clear: organizations need to upgrade their cybersecurity defenses now, with the advanced threat detection capabilities to mitigate risks effectively and identify and stop evolving threats.

That’s not to say that companies are sitting on their hands, hoping for the best. Some organizations are currently shoring up their cyberdefense with perimeter defense tools like Zero Trust Network Access (ZTNA). Others are employing regular software updates and site management reviews. Yet others are using secure dedicated high-capacity private networks, with a range of symmetrical speeds up to 100 Gbps.

The IoT is a growing concern

Beyond AI, the proliferation of Internet of Things (IoT) devices are also a major source of concern for businesses. Research shows that 57% of these IoT devices “are highly vulnerable due to outdated operating systems or lack of encryption.”  These devices are in widespread use now, and the density varies between industries. For example, connected medical devices have already become common - the average hospital room has 20, and large hospital systems could have 85,000 connected devices. 

While many businesses are currently investing heavily in IoT technologies, few have the infrastructure to fully support these initiatives. Network infrastructure and connectivity, with a heavy emphasis on cybersecurity, must transition from a background function to a strategic enabler of modern organizations.

Simplifying network management and cybersecurity

Cybersecurity requirements can, and do, change suddenly. That’s why organizations should seek out firewall and unified threat management (UTM) solutions designed to be flexible and provide multiple security functions all from one centralized interface. Those solutions should leverage AI and machine learning for enhanced threat detection and response. 

Organizations with demanding network requirements need advanced security to protect their assets, while still maintaining the flexibility to support hybrid networks and multi-cloud strategies. However, many organizations find that their overworked in-house experts just don’t have the time to adequately address network security issues. 

Many organizations are opting to implement managed solutions to meet their network needs, both to take the pressure off their in-house IT and to avoid technical debt. With the proper partner, delivering updates that stay current with the latest security threats and technologies, organizations can feel confident that security measures are contemporary and effective. These updates reduce the need for frequent overhauls and upgrades, minimizing technical debt for organizations.  IT leaders can choose the level of management desired, allowing their teams to control what they want and consult with trusted partners for the rest.

Spectrum Business can help

Spectrum Business can make network management and security easier with a complete solution that includes design, connectivity, configuration, equipment, installation and ongoing US-based support for all your locations nationwide. Our solutions are built on the Cisco Meraki, or Fortinet FortiGate and FortiCloud platforms.

Additionally, we offer managed security services with unified threat management, DDoS protection and other solutions that can address your cybersecurity concerns.

Feel secure in the knowledge that with Spectrum Business you have a partner who is always available for support, is experienced in providing managed networks - including SD-WANs -  and delivers connectivity options with reliable, scalable and secure networks.

Learn more about our cybersecurity offerings and see for yourself why 83% of Fortune 500 rely on Spectrum Business for technology solutions.