Cybersecurity in 2026: Phishing surges, shadow AI grows - MSN

For years, cybersecurity threats have been described as becoming more sophisticated. In practice, attackers are exploiting the same weaknesses organisations have struggled to close, now amplified by faster, cheaper and more accessible technology. As 2026 approaches, those gaps are widening, increasing pressure on employees, security teams and governance structures. {{image}} Email remains the primary attack vector Email is expected to remain the dominant entry point for cyberattacks, potentially accounting for as much as 90% of breaches. Phishing incidents already represent 77% of attacks, and the rise of AI-generated content is accelerating this trend. Messages are becoming more personalised, fluent and context-aware, making them harder to detect even for trained employees. As collaboration platforms tighten access controls and monitoring, more everyday work is shifting back to email, increasing exposure. Attackers are moving away from broad, high-volume campaigns and instead targeting specific individuals, often impersonating executives or finance staff. The growing use of deepfake content adds further pressure, creating scenarios where a single convincing message can bypass multiple layers of defence.