S&P 5005,842.10 0.42%
NASDAQ19,210.55 0.88%
NVDA1,184.22 2.41%
MSFT478.90 0.88%
GOOGL210.11 1.12%
META612.50 0.34%
AAPL239.80 0.21%
AMZN248.66 1.40%
AVGO1,902.40 3.12%
TSLA298.10 1.05%
BTC98,420 1.88%
ETH4,210 2.24%
10Y4.18% 0.02%
DXY104.12 0.18%
S&P 5005,842.10 0.42%
NASDAQ19,210.55 0.88%
NVDA1,184.22 2.41%
MSFT478.90 0.88%
GOOGL210.11 1.12%
META612.50 0.34%
AAPL239.80 0.21%
AMZN248.66 1.40%
AVGO1,902.40 3.12%
TSLA298.10 1.05%
BTC98,420 1.88%
ETH4,210 2.24%
10Y4.18% 0.02%
DXY104.12 0.18%
Back to homepage
AI & Cybersecurity

When AI Writes the Scam: Generative Models Fuel a New Wave of Phishing

Deepfakes, automated spear-phishing and model jailbreaks are lowering the cost of cybercrime. Firms are racing to build AI defenses — but strategy matters.

P
Pedro Marini
July 18, 2026 · 3 min read
When AI Writes the Scam: Generative Models Fuel a New Wave of Phishing

Illustration by IMF Alpha editorial · Reviewed by Pedro Marini

Listen to this article
AI narration · ~3 min
Tickers mentioned
MSFT+1.80%PANW-2.50%CRWD+3.10%FTNT-1.20%

Short version

Generative AI has turned social engineering from a craft into an assembly line. Personalized phishing emails, eerily convincing deepfake voicemails, and on-demand malware scaffolds can be produced in minutes. Treating this as just a hotter version of old phishing problems is a recipe for getting outpaced.

Why this matters now

In the past 18 months two practical barriers for attackers have dropped away: the need for fluent human writing and the time needed to scale. What once took a researcher a day or more — probing a target, drafting a bespoke message, chasing follow-ups — can now be scripted with prompt templates and cheap compute. The outcome is simple: much higher volume, and much more plausible social engineering. That combination hits organizations that still rely on signature-based defenses and one-size-fits-all awareness campaigns.

What we’re actually seeing

  • Automated spear-phishing that scrapes LinkedIn, GitHub, and public web content to build context, subject lines, and even mimic tone. Attackers match meeting rhythms and project names; sometimes the messages read like someone from inside the team wrote them.
  • Deepfake voice fraud for wire transfers and vendor changes. It’s no longer a rare, expensive stunt — it’s cheap enough to iterate until a clip sounds right.
  • Prompt chains and model jailbreaks coaxing code-generation models into outputting malware snippets or configuration exploits.

Market response — a messy sprint with different bets

Vendors are scrambling to put AI into detection pipelines. Expect more spending on behavior telemetry, anomaly detection, and AI-assisted incident response. Some incumbent defenders are piling on cloud analytics; newer firms are pitching XDR with built-in machine learning.

That said, slapping default detection models onto the problem has limits. Models trained on historical attacks can lag behind novel, AI-crafted threats. And there’s a concentration risk: many defenders depend on large models from a few cloud providers, which creates a single point of failure if those models are compromised or misused.

Practical moves for CISOs and boards

  • Treat this as a governance and architecture issue, not just another awareness course. Update playbooks assuming social engineering will be convincingly tailored.
  • Adopt continuous verification: require multi-factor approvals for transfers, out-of-band checks for vendor changes, and step-up authentication for sensitive actions.
  • Reassess vendor risk when security tools rely on third-party large models; ask for model provenance and adversarial testing results.
  • Run tabletop exercises that mimic AI-enhanced scams. Generic phishing drills won’t cut it; training should reflect personalized lures.
  • Bring cyber insurers into the conversation. Underwriters are reworking exposure models and may demand specific AI-related controls for coverage.

A counterpoint

AI helps defenders too. The same techniques can speed triage, add richer context to alerts, and automate containment — all things that reduce dwell time. The strategic question is whether organizations can adopt defensive AI fast enough without creating new single points of failure.

To be blunt

This isn’t a call to panic, but it does merit urgency. The economics of crime have shifted: low-skill actors now wield convincing tools. Those who combine stronger identity controls, tighter vendor governance, realistic simulations, and selective defensive AI adoption will have a real chance of keeping up.

Pedro Marini

Advertisement
Continue reading

Related coverage

The IMF Brief · Daily Newsletter

The AI economy, decoded before the open.

Five minutes. One email. The signal cutting through the noise at the intersection of artificial intelligence and Wall Street. Free, forever.

Join 184,000+ readers · No spam · Unsubscribe anytime