Key Takeaways:
- The rapid adoption of Generative AI tools is exposing sensitive information and creating new opportunities for cybercriminals to exploit critical data.
- Organizations worldwide faced an average of 2,027 cyber attacks per week in 2025, representing a 9% increase compared to 2024.
- The United States and the United Kingdom were the most heavily targeted regions, with over 1,440 organizations attacked weekly.
- Ransomware remains a dominant threat, but the adoption of Gen AI has introduced a new layer of risk due to inadequate security controls and data classification policies.
- The Qilin ransomware gang was ranked as the most aggressive group in 2025, followed by LockBit5 and Akira.
Introduction to the Growing Concerns of AI Security Risks
Check Point Research has revealed growing concerns over the security risks associated with the rapid adoption of Generative AI tools. According to its December 2025 Global Cyber Attack Statistics report, the widespread use of Gen AI across enterprises is unintentionally exposing sensitive information, creating new opportunities for cybercriminals to exploit critical data. This is a worrying trend, as organizations are increasingly relying on AI-powered tools to drive their operations, without fully considering the potential security implications. The report highlights that organizations worldwide faced an unprecedented volume of cyber threats throughout 2025, with an average of 2,027 cyber attacks per week, representing a 9% increase compared to 2024.
The Escalation of Cyber Threats
The surge in cyber attacks underscores the expanding attack surface driven by digital transformation, cloud adoption, and the increasing reliance on AI-powered tools. The United States and the United Kingdom were the most heavily targeted regions, with more than 1,440 organizations attacked weekly. This marks a significant 39% rise in cyber incidents compared to December 2024, signaling a sharp escalation in threat activity across highly digitized economies. The increasing frequency and severity of cyber attacks highlight the need for organizations to be vigilant and proactive in their cybersecurity efforts. The fact that the most heavily targeted regions are also the most digitally advanced suggests that the adoption of new technologies is creating new vulnerabilities that attackers are quick to exploit.
The Risks Associated with Gen AI Adoption
While ransomware continues to be the dominant threat impacting industrial and enterprise operations, Check Point researchers warn that Gen AI adoption has introduced a new layer of risk. Sensitive corporate data is often being fed into AI systems without adequate security controls, governance frameworks, or data classification policies. This lack of oversight increases the likelihood of confidential information being leaked, stored insecurely, or later exploited by threat actors. The use of AI-powered tools is creating new attack vectors that organizations must consider and address. The fact that sensitive data is being used to train AI models without proper security controls is a particular concern, as it creates a rich target for attackers seeking to exploit sensitive information.
The Most Active Ransomware Groups
The Israeli-based cybersecurity firm also identified the most active ransomware groups operating in 2025. The Qilin ransomware gang, believed to be operating from Russia, was ranked as the most aggressive group through December 2025. It was followed by LockBit5 and Akira, which ranked second and third respectively. These groups primarily targeted Windows-based systems, virtualized environments, and increasingly, Linux infrastructures, reflecting attackers’ evolving technical capabilities. The fact that these groups are able to adapt and evolve their tactics to exploit new vulnerabilities is a concern, and organizations must be prepared to respond to these emerging threats.
The Most Vulnerable Sectors
In terms of affected sectors, government and education organizations were among the hardest hit, followed closely by non-profit institutions. Check Point attributes this vulnerability to outdated infrastructure, a shortage of in-house cybersecurity expertise, and the unsafe use of organizational data to train AI models without scientifically designed security controls. These weaknesses make such organizations attractive targets for attackers seeking high-impact breaches with minimal resistance. The fact that these sectors are often under-resourced and under-prepared to respond to cyber threats makes them particularly vulnerable to attack. The report emphasizes the need for these organizations to prioritize cybersecurity and invest in the necessary resources and expertise to protect themselves against emerging threats.
Conclusion and Recommendations
Overall, the report emphasizes the urgent need for enterprises to implement stronger AI governance, modernize legacy systems, and invest in cybersecurity talent to mitigate emerging risks in an increasingly AI-driven threat landscape. The rapid adoption of Gen AI tools is creating new opportunities for cybercriminals to exploit critical data, and organizations must be proactive in addressing these risks. By prioritizing cybersecurity and investing in the necessary resources and expertise, organizations can reduce their risk of being targeted and minimize the impact of any potential breaches. The report highlights the need for a comprehensive approach to cybersecurity that takes into account the emerging risks associated with AI adoption, and organizations must be prepared to adapt and evolve their cybersecurity strategies to respond to these new threats.