KELA’s State of Cybercrime 2026 Report Reveals 2.86 Billion Stolen Credentials and the Rise of Autonomous AI Attacks
KELA's State of Cybercrime 2026 Report reveals 2.86 billion stolen credentials and a rise in autonomous AI attacks in 2025. The report highlights a significant shift in cybercrime tactics, with attackers increasingly relying on identity abuse and AI-driven automation.
Cybercrime is evolving structurally, with attackers shifting from traditional intrusion methods to identity abuse, AI-driven automation, and large-scale exploitation of trust-based systems. In 2025, KELA tracked 2.86 billion compromised credentials globally, with 3.9 million infected machines generating 347.5 million credentials from malware infections. Ransomware surged 45% year-over-year, with 7,549 victims, mostly in the United States. macOS infections rose by 7,000% due to commercialized malware-as-a-service. AI is now deeply integrated into the cyberattack lifecycle, with 80-90% of tasks executed with minimal human involvement, introducing 'vibe hacking' tactics.
This content was automatically generated and/or translated by AI. It may contain inaccuracies. Please refer to the original sources for verification.