Artificial Intelligence & Machine Learning,
Fraud Management & Cybercrime,
Fraud Risk Management
Findings From WEF’s 2026 Report Show Shifting Cyber Priorities as AI Reshapes Risk
Recent findings from the World Economic Forum’s Global Cybersecurity Outlook 2026 indicate a notable shift in cybersecurity priorities. Cyber-enabled fraud has eclipsed ransomware as the foremost concern for CEOs, signaling a significant evolution in risk management strategies as organizations approach the upcoming year.
The report reveals that 73% of board members reported experiencing cyber-enabled fraud within their networks in 2025, highlighting the critical financial and reputational repercussions these incidents can entail. While ransomware was the leading concern in 2025, it has now fallen out of the top three threats for business leaders, although Chief Information Security Officers (CISOs) continue to rank it highly alongside supply chain disruptions.
“This shift suggests that CEOs are increasingly focused on preventing financial losses while preparing for emerging threats, whereas CISOs maintain their primary concern for operational resilience,” the report states. This dichotomy reflects differing priorities at the executive level, particularly as organizations adapt to the changing landscape of cyber threats.
AI Emerges as a Major Risk Factor
The WEF report identifies artificial intelligence as a pivotal element affecting cybersecurity in 2026. An overwhelming 87% of respondents noted an uptick in AI-related risks, underscoring its dual role as both a beneficial tool and a new threat vector. AI technology is seen as a force multiplier, broadening the attack surface as it becomes integrated into core business processes while also enhancing organizations’ defensive capabilities.
Josephine Teo, Singapore’s Minister for Digital Development and Information, emphasizes that while AI can bolster efforts to detect and respond to cyber threats, it is not without its vulnerabilities, such as potential data leaks and misuse. Survey data reveals that 37% of business leaders identified data leaks as the most pressing concern associated with generative AI, showcasing the evolving landscape of cyber risks.
Progress in Cybersecurity Preparedness
The findings indicate a partial but measurable improvement in organizations’ approaches to managing AI-related cyber risks. In 2025, many organizations viewed generative AI as a substantial threat due to its capacity to facilitate sophisticated attacks. However, by 2026, 64% of organizations reported they now have mechanisms in place to assess AI security before deployment, a significant increase from 37% the prior year.
Moreover, 77% of surveyed organizations have adopted AI specifically for cybersecurity, with applications such as phishing detection and automated intrusion response topping the list. Notably, sectors like energy show a pronounced focus on intrusion prevention, while firms in materials and infrastructure prioritize phishing defenses.
Geopolitical Influences on Cybersecurity
The report connects heightened cybersecurity risks to a growing climate of global confrontation, influenced by shifting trade policies and technology dependencies. As governments reconfigure supply chains and strive to establish trust with regional partners, the velocity of these changes may outpace robust cyber due diligence, inadvertently widening the attack surface across weaker networks.
In conclusion, as we approach the end of the decade, the report anticipates transformative trends influencing the threat landscape. Quantum technologies, autonomous systems, and decentralized technologies are poised to reshape how organizations confront cyber risks, emphasizing the need for evolving cybersecurity strategies.
