Cybercriminals are expected to use AI more aggressively in cyberattacks, making it essential for businesses to enhance their cybersecurity strategies, according to Trend Micro’s 2025 cybersecurity predictions. The company highlights the growing risks posed by AI-enhanced scams, disinformation campaigns, and ransomware threats.
“AI is becoming a weapon of choice for cybercriminals. It enables them to launch more sophisticated attacks, making phishing, malware, and disinformation harder to detect,” said Raymond Almanon, senior security specialist at Trend Micro.
AI’s role in cybercrime
Last year, ransomware attacks became more persistent, exploiting exposed credentials and security gaps in cloud environments and enterprise networks. Trend Micro predicts that in 2025, cybercriminals will leverage AI to automate and scale these threats further. Tools such as AI-generated phishing campaigns and deepfake-powered scams will become more common.
Cybercriminals will also target AI systems themselves, potentially hijacking autonomous agents, stealing sensitive data, or launching AI-powered denial-of-service (DDoS) attacks. “Companies need to monitor AI-driven operations closely, ensuring their AI systems are secure and protected from potential hijacking,” Almanon said.
Trend Micro warns that advanced persistent threat (APT) groups will increasingly target cloud environments and supply chains. These attackers can exploit vulnerabilities in public-facing servers, digital drivers, and software dependencies to infiltrate systems. The “bring your own vulnerable driver” (BYOVD) technique, in which cybercriminals use outdated or insecure drivers to bypass security measures, is a growing concern.
“Supply chains are a critical part of enterprise operations, but they also introduce new vulnerabilities,” Almanon said. “Companies must implement multi-layered defenses and monitor for suspicious activity in their cloud environments.”
Ransomware
Ransomware remains a major threat, with attackers refining their techniques to evade detection. AI is being used to create more effective malware, making it harder for traditional security tools to detect infections.
The industries most affected by ransomware in the Philippines include technology, healthcare, government, education, and manufacturing. Attackers are increasingly targeting enterprise data, using AI-driven tools to steal login credentials, manipulate advertising content, and exploit weaknesses in AI training environments.
“Cybercriminals know that enterprise data is valuable. They will continue to find new ways to exploit AI systems and user accounts,” Almanon said.
Strengthening cybersecurity defenses
Trend Micro emphasizes that while AI is being used to enhance cyberattacks, it can also be used defensively. AI-powered security solutions, such as AI companions and predictive threat analysis, can help enterprises detect and respond to threats more effectively.
To mitigate risks, companies should monitor AI agents, secure public-facing systems, and ensure compliance with evolving cybersecurity standards. Increasing cybersecurity awareness among employees is also critical in preventing AI-driven scams and disinformation.
As AI-driven cyber threats continue to evolve, enterprises must take proactive steps to strengthen their security measures. Implementing AI-enhanced defenses and fostering a culture of cybersecurity awareness will be key to staying ahead of cybercriminals in 2025.