AI-Driven Online Fraud and Credential Theft Campaigns
Cybercriminals are increasingly leveraging advanced AI technologies, including large language models (LLMs) and agentic AI, to automate and scale online fraud, abuse, and credential theft campaigns. These AI-driven attacks enable adversaries to craft convincing phishing emails, create fake websites, and even execute deepfake voice or video calls, making it more difficult for organizations to detect and defend against malicious activity. The rise of agentic AI, which can autonomously gather inputs, evaluate options, and take actions such as infiltrating networks and stealing credentials, marks a significant escalation in attacker sophistication and persistence.
Recent research highlights a 300% increase in AI-powered bot traffic, complicating the application and API threat landscape and lowering the barrier to entry for cybercriminals through fraud-as-a-service (FaaS) offerings. These developments have led to a surge in digital fraud and abuse, impacting key industries and regions globally. Organizations are advised to adopt AI-driven defenses and maintain regulatory compliance to counteract the growing threat posed by malicious AI bots and automated credential theft campaigns.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
1 event from the most recent confirmed update back to the earliest known activity.
Story first reported
Initial story creation
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
4 references tracked. Mallory keeps watching after this page renders.
AI in Cybersecurity: How Smart Attacks Are Redefining Risk — and What Your Brand Must Do
foresiet.com
Open sourceFour ways to defend against Agentic AI attacks
scworld.com
Open sourceOnline Fraud and Abuse 2025: AI Is in the Driver’s Seat
akamai.com
Open sourceThe AI revolution fueling the bot epidemic
cio.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Surge in AI-Driven Cybercrime and Fraud Tactics
Cybercriminals are increasingly leveraging generative AI and large language models (LLMs) to enhance the sophistication, scale, and impact of their attacks. Reports highlight a dramatic rise in advanced phishing, digital fraud, and malware development, with AI enabling attackers to automate social engineering, generate convincing fake identities, and bypass traditional security controls. The use of AI has led to a significant increase in phishing email volume and a 180% surge in advanced fraud attacks, as criminals deploy autonomous bots and deepfake technologies to evade detection and inflict greater damage. Security researchers have observed malware authors integrating LLMs directly into their tools, allowing malicious code to rewrite itself or generate new commands at runtime, further complicating detection efforts. These developments mark a shift from low-effort, opportunistic attacks to highly engineered campaigns that require more resources to execute but yield far greater impact. The rapid adoption of AI by threat actors underscores the urgent need for organizations to reassess their defenses and adapt to the evolving threat landscape.
Mar 21, 2026
AI-Driven Financial Fraud and Phishing Campaigns Targeting Financial Services
Financial services organizations are facing a surge in sophisticated fraud attempts enabled by artificial intelligence, as threat actors leverage AI tools to automate and scale their attacks. Recent reports highlight that AI is being used to craft highly convincing phishing emails and social engineering campaigns, making it increasingly difficult for traditional security measures to detect malicious activity. Attackers are utilizing generative AI to personalize messages, mimic legitimate communications, and evade standard email filters, thereby increasing the success rate of phishing attempts. In response, financial institutions are adopting advanced AI-powered security solutions designed to identify and block these next-generation threats. These defensive tools analyze behavioral patterns, detect anomalies, and adapt to evolving attack techniques, providing a dynamic shield against AI-driven fraud. The deployment of agentic AI systems allows organizations to automate threat detection and response, reducing the window of opportunity for attackers. Security teams are also leveraging machine learning to monitor transaction patterns and flag suspicious activities in real time, helping to prevent unauthorized transfers and account takeovers. The integration of AI into both offensive and defensive cyber operations marks a significant escalation in the financial fraud landscape. Experts warn that as AI technology becomes more accessible, the volume and complexity of attacks will continue to rise, necessitating ongoing investment in AI-based defenses. Training and awareness programs are being updated to educate employees about the risks posed by AI-generated phishing and social engineering. Regulatory bodies are also beginning to issue guidance on the ethical use of AI in financial services, emphasizing the need for transparency and accountability. Collaboration between industry stakeholders is increasing, with information sharing initiatives aimed at identifying emerging AI-driven threats. The rapid evolution of AI capabilities underscores the importance of proactive security strategies and continuous monitoring. Financial organizations are urged to assess their current defenses and consider the adoption of agentic AI tools to stay ahead of adversaries. The convergence of AI in both attack and defense highlights a new era in cybersecurity, where automation and intelligence are central to both risk and resilience. As the threat landscape evolves, the ability to rapidly detect and respond to AI-enabled fraud will be a key differentiator for secure financial operations.
Mar 21, 2026
AI-Driven Cyber Threats and the Evolution of Fraud and Defense Tactics
Cybercriminals are increasingly leveraging artificial intelligence, automation, and stolen credentials to conduct large-scale, sophisticated attacks across multiple sectors. The 2025 holiday season is seeing a surge in fraud campaigns that begin earlier than ever, with attackers using AI to mimic legitimate consumer behavior, automate credential stuffing, and bypass traditional detection systems. Underground marketplaces now efficiently trade automation kits and malicious configurations, making fraud a continuous, data-driven threat rather than one limited to peak shopping periods. Security experts warn that organizations relying solely on heightened monitoring during traditional high-risk windows are at greater risk, as adversaries pre-position and refine their attack infrastructure well in advance. To counter these evolving threats, cybersecurity leaders emphasize the need for predictive and adaptive defense systems powered by AI. Rather than relying on reactive measures, organizations are urged to operationalize threat intelligence by integrating machine learning, behavioral analytics, and automation into their security operations. This approach enables real-time detection, contextual analysis, and rapid response, bridging the gap between intelligence collection and incident containment. However, experts caution that AI must be paired with human oversight and strong governance to ensure trust, transparency, and effective decision-making in the face of increasingly polymorphic and evasive attacks.
Mar 21, 2026