By 
- 94% of cyber leaders identify AI as the defining force in cybersecurity, with 77% of organizations using it in cyber operations.
- AI is accelerating cyber threats and defences alike, forcing organizations into a high-speed race against cyber criminals.
- AI adoption in cybersecurity is moving from pilots to real-world deployment, with clear gains in vulnerability identification and threat detection.
- Learn more about the report here.
Artificial intelligence is rapidly transforming the cybersecurity landscape and has emerged as the single most powerful catalyst for change, according to a new report by the World Economic Forum.
RELATED: Kenya’s Artificial Intelligence Bill, 2026 – Proposed too soon?
The study shows that 94 percent of global cyber leaders now regard AI as a defining force in cybersecurity, while 77 percent of organisations have already integrated AI into their security operations to strengthen threat detection, response, and resilience.
The AI and Cyber: Empowering Defenders report, developed in collaboration with KPMG, highlights measurable gains in cost reduction, response speed and resilience.
While threat actors increasingly weaponize AI to automate deception, generate malware and scale attacks at machine speed, the report indicates that organizations deploying AI strategically are achieving significant advantages. Organizations that extensively leverage AI in security reduce average breach costs by up to $1.9 million and shorten breach lifecycles by approximately 80 days.
“AI has the potential to shift the balance towards defenders. Organizations that treat it as a strategic capability, rather than a standalone tool, will be better placed to turn growing cyber risk into resilience and competitive advantage,” said Akshay Joshi, Head of the Centre for Cybersecurity, World Economic Forum.
Building on the Forum’s 2025 publication, Artificial Intelligence and Cybersecurity: Balancing Risks and Rewards, the 2026 edition focuses on how organizations are deploying AI for defence in practice. As enterprise attack surfaces expand to include hundreds of thousands of internet-facing assets, the scale and complexity of cyber risk are increasing significantly.
Among the examples featured, KPMG reports a 25% increase in operational efficiency in threat intelligence, Accenture cut security analysis time in more than 100,000 internet-facing sites from 15 minutes to under one minute, and IBM’s ATOM platform helps scale global 24×7 threat detection and response, automating more than 850 analyst hours a month and cutting end-to-end investigation time by 37%.
“Attackers are moving faster and at greater scale than ever before. This report is a call to action for organizations to match that pace, with AI as a force multiplier for cyber defence,” said Laurent Gobbi, Partner, Global Head of Cyber & Tech Risk, KPMG.
The report emphasizes that AI’s value in cybersecurity lies in augmenting human expertise, accelerating decisions and strengthening resilience, rather than automation alone. It highlights that its impact depends on clear AI deployment strategy, rigorously tested use cases before scaling, and strong governance and human oversight from the outset.
This new report draws on 20 real-world case studies and insights from one-on-one interviews and workshops conducted under the World Economic Forum’s Cyber Frontiers: AI & Cyber initiative, convening 105 representatives from 84 organizations across 15 industries.
As cyber risks become more complex, the report calls on business and government leaders to treat AI as a foundational security capability, investing not only in technology but also in the skills, processes and governance required to defend at machine speed.
