Latest from Italy, updates in the state-sponsored landscape, ransomware and leaks

Attacks in Italy, several breaches announced, new state-sponsored operations

 View all
Cybersecurity

AI-Powered Phishing: The New Frontier of Cyber Threats

In recent years, phishing has evolved from a rudimentary technique into a sophisticated and highly targeted tool, capable of striking individuals and organizations with increasing precision.

Today, the integration of Artificial Intelligence (AI) is further accelerating this transformation, redefining how attackers design and execute their campaigns.

Understanding this evolution is essential to anticipate threats and strengthen defense strategies.

 

AI-Enhanced Phishing

Traditionally, phishing relied on large-scale, poorly personalized campaigns: generic emails, obvious grammatical errors, and suspicious requests. This approach depended on volume, assuming that a small percentage of users would fall for the trap.

With the introduction of AI, the paradigm has shifted. Attackers can now generate credible, error-free, and highly contextualized content. Advanced language models make it possible to craft messages aligned with corporate contexts, mimic the tone of colleagues or suppliers, and tailor communication to the victim’s profile. The result is more targeted, more convincing, and therefore more effective phishing.

One of the areas where AI is having the greatest impact is spear phishing—highly personalized attacks aimed at specific individuals or key roles within an organization. Thanks to the availability of public data and AI’s ability to analyze it quickly, attackers can build detailed profiles of their victims. Information from social networks, corporate websites, or data breaches is used to create tailored messages.

AI also enables the automation of this process at scale, reducing time and increasing precision. In this scenario, the line between legitimate and fraudulent communication becomes increasingly blurred, making it harder for users to distinguish authentic emails from malicious ones.

 

Deepfakes, Advanced Social Engineering, and Campaign Scalability

The evolution of phishing is not limited to text. Generative AI technologies are making tools for creating realistic audio and video content increasingly accessible. Deepfakes represent a new dimension of social engineering, where a person’s voice or image can be replicated with high fidelity.

In a corporate environment, this translates into attacks where an employee may receive a call that appears to come from a senior executive or trusted partner, making urgent and credible requests. The combination of urgency, authority, and realism significantly increases the likelihood of a successful attack.

Another key element introduced by AI is the ability to scale attacks while maintaining high quality. In the past, there was a trade-off between volume and personalization—today, that limitation has largely been overcome.

Attackers can generate thousands of variations of the same message, test their effectiveness in real time, and adapt campaigns based on results. Machine learning techniques allow continuous optimization of content, improving open and engagement rates.

This data-driven approach makes phishing increasingly similar to an advanced marketing campaign, where every element is designed to maximize impact.

 

Implications for Organizations and the Role of Security Culture

The evolution of AI-driven phishing presents new challenges for organizations. Traditional defenses based on static filters and predefined rules are no longer sufficient. AI-generated content can easily bypass controls based on known patterns, requiring a more dynamic and intelligent approach.

It is necessary to adopt advanced security solutions capable of analyzing context, behavior, and anomalies in communications. Integrating defensive AI technologies is a crucial step in countering increasingly sophisticated threats.

At the same time, the human factor remains central. User training must evolve to include realistic and up-to-date scenarios, where phishing is no longer easily recognizable. Security awareness becomes a key element of organizational resilience.

In a context where threats are increasingly credible, a strong security culture plays a strategic role. It is not only about adopting technologies, but about building an integrated approach involving people, processes, and tools.

Organizations must promote awareness, encourage anomaly reporting, and reduce the fear of making mistakes. Creating an environment where security is seen as a shared responsibility is essential to counter social engineering attacks.

In this regard, TelsySkills is a solution designed to “train” employees in companies and institutions on cybersecurity topics—a structured e-learning platform with dedicated training courses and an engaging learning program.

 

How to Defend and Anticipate Threats

The use of AI in phishing is set to grow, following the evolution of technologies and their increasing accessibility. Attackers will continue to experiment with new ways to exploit these capabilities, making the threat landscape more complex.

A proactive approach is essential: monitoring trends, investing in research and innovation, and developing advanced analytical capabilities are key elements to anticipate threats, alongside strengthening security awareness.

In this scenario, collaboration between public and private actors becomes a key enabler. Sharing information and best practices helps strengthen the security ecosystem and improve collective response capabilities.

Addressing this challenge—the challenge of AI—requires a shift in mindset: not just defense, but continuous adaptation. Advanced technologies, training, and security culture must converge into an integrated strategy.

Only through a conscious and proactive vision is it possible to reduce risk and build digital resilience suited to the challenges of the present and the future.