The cyber threat landscape has never been more dynamic or more dangerous. The Federal Bureau of Investigation's annual report indicates that global losses from cybercrime in 2024 exceeded US$16 billion, marking a 33% increase from 2023. More than US$470 million was stolen in scams that started with a text message last year, according to the Federal Trade Commission.  

Data breaches cost businesses an average of US$4.88 million, highlighting the financial impact of cybercrimes. In this context, artificial intelligence (AI) has emerged as a defence mechanism and a resource for attackers. 

Traditional cybersecurity has largely been reactive, dependent on signatures and predefined rules that lag behind new threats. AI is shifting toward predictive, adaptive and even autonomous defence strategies. 

Adaptive machine learning and deep learning models now identify subtle anomalies and complex fraud networks, providing organisations with stronger defences for digital assets. Microsoft's Defender AI, a cloud-powered security system, can detect 96% of advanced persistent threats within minutes, a performance far beyond the reach of manual systems, according to the Microsoft Security Report, 2024. Similarly, Mastercard's Decision Intelligence Pro evaluates user behaviour and characteristics to assign risk scores to transactions, identifying potential fraud within 50 milliseconds.  

AI in Cybersecurity: From Reactive to Predictive Defence 

Traditional cybersecurity tools are rule-based and often struggle with today's sophisticated, adaptive threats. AI changes this paradigm in the following ways: 

Threat Prediction and Anomaly Detection:

Machine learning models analyse vast amounts of historical and real-time data to flag anomalies, whether an unusual login attempt, lateral movement in a network, or abnormal data exfiltration. Leading organisations are leveraging AI in the following ways: 

• Microsoft's Defender AI now detects 96% of advanced persistent threats within minutes, compared to hours with manual systems. 

  
  

• HSBC's AI-powered ID verification has reduced onboarding fraud by 30%. 

  
  

• Google AI filters 2B+ scam texts monthly. 

Automated Incident Response: 

• AI can quarantine suspicious endpoints, revoke compromised credentials, or isolate malicious traffic autonomously. 

  
  

• Deployment: A McKinsey case study showed that banks using AI-driven security operation centres (SOC) automation reduced incident response time by 70%. 

Adaptive Protection for Hybrid Environments: 

• With remote work and cloud-native applications, AI-driven endpoint detection and response (EDR) tools are scaling security beyond traditional perimeters. 

  
  

• Organisations like Microsoft utilise EDR tools to consistently oversee on-premises and cloud workloads, automatically identifying and addressing threats across hybrid networks in real time. 

AI in Fraud Detection: Use Cases 

Fraudulent activity in banking, e-commerce, or insurance exploits the scale and anonymity of digital platforms. AI is increasingly deployed to counter these threats: 

• Transaction Monitoring: Real-time ML models analyse payment behaviour to detect anomalies such as unusual geolocations, abnormal transaction sizes, or deviations from spending history. Unlike rule-based systems, AI can detect subtle cross-pattern correlations that indicate fraud.  

  
  

  Stripe and PayPal use ML to analyse payment behaviour at scale, flagging anomalies such as suspicious geolocations or abnormal purchase sequences. 

• Behavioural Biometrics: AI models capture keystroke dynamics, mouse movements, or mobile device usage patterns. These behavioural fingerprints make it harder for fraudsters to impersonate legitimate users. 

  
  

  Platforms like capture keystroke dynamics, mouse movements, and device patterns to verify users invisibly 

• Synthetic Identity Fraud Detection: Deep learning models help financial institutions detect synthetic identities, fraudulent identities constructed from real and fake data, by correlating subtle inconsistencies across large datasets. 

• Insurance Claims Analysis: AI systems cross-check claim submissions against historical data, medical records, or external datasets to identify fraudulent claims more efficiently. 

Industry Adoption: How Organisations are Deploying AI in Cybersecurity 

The growing sophistication of attacks has accelerated corporate adoption of AI-driven solutions. Leading companies across sectors are embedding AI into their cybersecurity stacks to strengthen resilience against fraud and breaches.

• Varonis recently integrated SlashNext's AI phishing detection into its ecosystem to secure communication platforms like Slack and Microsoft Teams. 

  
  

• Nasdaq Verafin partnered with BioCatch to enrich its fraud detection with behavioural analytics, enabling banks to detect and stop fraudulent payments before losses occur.  

  
  

• Microsoft expanded its Security Copilot with autonomous AI agents to support SOC teams in triage and phishing analysis. 

  
  

• Google embedded AI in Android's Messages app to detect scam texts, processing over 2 billion suspicious messages monthly. 

  
  

• Airtel, an Indian telecom operator, deployed AI to block over 180,000 malicious links in 25 days, protecting 5.4 million subscribers. 

  
  

• JPMorgan Chase: According to a report by JPMorgan Chase, the company implemented an AI model that reduced false positives by 50% and improved fraud detection accuracy by 25%, leading to enhanced customer trust and reduced operational costs  

  
  

• Commonwealth Bank of Australia: Introduced an AI-driven app, Truyu, which alerts users to unauthorised identity checks, helping to prevent identity theft and fraud, which led to a 76% drop in customer scam losses. 

Advanced AI Techniques in Cyber Defence

Beyond conventional anomaly detection, several specialised AI techniques are reshaping cyber defence strategies: 

• Graph Neural Networks (GNNs): Cyber incidents often involve complex relationships between IP addresses, devices, accounts, or transactions. GNNs can model these relationships, enabling detection of fraud rings or advanced persistent threats (APTs) that span multiple systems. 

  
  

• Natural Language Processing (NLP): Phishing remains the most common cyberattack vector. NLP models can analyse email text, tone, and metadata to detect phishing attempts, even when attackers vary word choice or mimic legitimate corporate styles. 

  
  

• Federated Learning: Privacy concerns often restrict cybersecurity data sharing across organisations. Federated learning allows multiple institutions to collaboratively train ML models without sharing raw data, enhancing collective defence. 

  
  

• Adversarial Machine Learning (AML) Awareness: Attackers are increasingly exploiting ML system vulnerabilities. Research into AML focuses on making AI models more robust against poisoning, evasion, or model inversion attacks.

Risks and Challenges: The Double-Edged Sword 

While AI has become a cornerstone of defence, it also empowers attackers. Generative AI is weaponised to craft phishing campaigns, design ransomware, and automate social engineering. Anthropic, a U.S.-based AI company known for its Claude language models, confirmed that its own AI tools were exploited by hackers for such purposes, highlighting how accessible advanced cyberattacks have become. 

Beyond weaponisation, organisations face challenges in adopting AI responsibly. Black-box AI models raise explainability issues, especially in regulated industries that require transparent decision-making. Privacy is also a concern, as training data often includes sensitive information. The most underestimated risk is overreliance: when enterprises assume automation alone is sufficient, they risk blind spots that adversaries can exploit. 

The Future of AI in Cybersecurity and Fraud Detection 

• The rapid expansion of the market reflects the urgency of the threat and the tangible outcomes of AI-driven defence. The global market for AI in fraud management was valued at US$13.05 billion in 2024 and is projected to grow to US$31.69 billion by 2029, according to The Business Research Company. Precedence Research projects even more aggressive growth, forecasting US$65.35 billion by 2034 at a CAGR of 18.1%. 

• BFSI (banking, financial services, insurance) remains the frontrunner in adoption, but healthcare, retail, and telecom are rapidly following suit. The next frontier will likely focus on explainable AI (XAI), adversarial AI testing, and autonomous multi-agent security systems. These developments will define the balance between AI as a protective shield and AI as a weapon in the digital arms race. 

AI delivers faster detection, fewer false positives, and billions in fraud savings. At the same time, it lowers barriers for cybercriminals. 

2025 marks a turning point; cybercrime is not just an IT issue but a systemic economic threat. With billions lost annually and AI-powered threats, organisations must adopt defensive AI that's just as agile. The future lies in hybrid defence models, AI for speed and scale, humans for judgment and governance. For organisations, the challenge is clear: adopt AI responsibly, transparently, and strategically, or risk being outpaced in the digital arms race.