Skip to content
Longterm Wiki

Impact of AI on Cyber Threat from Now to 2027 – NCSC Assessment

government
UK Government·ncsc.gov.uk/report/impact-ai-cyber-threat-now-2027

Credibility Rating

4/5
High(4)

High quality. Established institution or organization with editorial oversight and accountability.

Rating inherited from publication venue: UK Government

This NCSC assessment evaluates how AI will amplify cyber threats through 2027, relevant to AI safety as it addresses misuse risks, proliferation of offensive AI tools, and vulnerabilities in critical infrastructure from AI deployment.

Metadata

Importance: 72/100organizational reportanalysis

Summary

The UK National Cyber Security Centre assesses that AI will almost certainly increase the frequency and intensity of cyber intrusion operations by enhancing threat actors' reconnaissance, vulnerability research, and exploit development capabilities. The report warns of a growing digital divide between AI-resilient and vulnerable systems, and highlights that proliferation of AI-enabled tools will expand offensive cyber capabilities to a broader range of state and non-state actors. Critical national infrastructure faces heightened risk as AI integration expands the attack surface.

Key Points

  • AI will almost certainly make cyber intrusion operations more effective and efficient, increasing frequency and intensity of threats through 2027.
  • A digital divide will emerge between systems keeping pace with AI-enabled threats and those that remain more vulnerable.
  • Proliferation of AI-enabled cyber tools will highly likely expand offensive capabilities to a wider range of state and non-state actors.
  • Growing AI integration in critical national infrastructure almost certainly increases the attack surface for adversaries.
  • Insufficient cyber security will almost certainly enable capable state-linked actors and cybercriminals to misuse AI for offensive operations.

Cited by 1 page

PageTypeQuality
AI Cyber Damage: Bounding the TailAnalysis--

Cached Content Preview

HTTP 200Fetched May 4, 202613 KB
Report Download & print article PDF Download & print article PDF Impact of AI on cyber threat from now to 2027 

 An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027. Elise Racine & The Bigger Picture / https://betterimagesofai.org NCSC assessment

 NCSC Assessment (NCSC-A) is the authoritative voice on the cyber threat to the UK. We combine source information – classified intelligence, industry knowledge, academic material and open source – to provide independent key judgements that inform policy decision making and improve UK cyber security. We work closely with government, industry and international partners for expert input into our assessments.

 NCSC-A is part of the Professional Heads of Intelligence Assessment (PHIA). PHIA leads the development of the profession through analytical tradecraft, professional standards, and building and sustaining a cross-government community.

 This report uses formal probabilistic language (see yardstick) from NCSC-A product to inform readers about the near-term impact on the cyber threat from AI. To find out more about NCSC-A, please contact the NCSC directly . 

 How likely is a 'realistic possibility'?

 Professional Head of Intelligence Assessment (PHIA) probability yardstick 

 NCSC Assessment uses the PHIA probability yardstick every time we make an assessment, judgement, or prediction. The terms used correspond to the likelihood ranges below:

 

 Key judgements

 Artificial intelligence (AI) will almost certainly continue to make elements of cyber intrusion operations more effective and efficient, leading to an increase in frequency and intensity of cyber threats.

 
 There will almost certainly be a digital divide between systems keeping pace with AI-enabled threats and a large proportion that are more vulnerable, making cyber security at scale increasingly important to 2027 and beyond.

 
 Assuming a lag, or no change to cyber security mitigations, there is a realistic possibility of critical systems becoming more vulnerable to advanced threat actors by 2027. Keeping pace with 'frontier AI' capabilities will almost certainly be critical to cyber resilience for the decade to come.

 
 Proliferation of AI-enabled cyber tools will highly likely expand access to AI-enabled intrusion capability to an expanded range of state and non-state actors.

 
 The growing incorporation of AI models and systems across the UK’s technology base, and particularly within critical national infrastructure (CNI), almost certainly presents an increased attack surface for adversaries to exploit.

 
 Insufficient cyber security will almost certainly increase opportunity for capable state-linked actors and cyber criminals to misuse AI to support offensive activities.

 
 Context

 This report builds on NCSC Assessment of near-term impact of AI on cyber threat published in January 2024. It highlights the assessment of the most significant impacts on cyber threat from AI develo

... (truncated, 13 KB total)
Resource ID: f6942e01c3eb0174 | Stable ID: sid_vhYUqu3vjA