Banks across the United States, Europe, and Japan are accelerating efforts to strengthen cybersecurity defenses after the emergence of a new artificial intelligence-powered vulnerability discovery tool raised concerns across the financial sector. The growing discussion around AI-driven cyber risks comes after Anthropic’s Mythos AI tool reportedly exposed previously unknown vulnerabilities within banking systems, prompting financial institutions and regulators to reassess their cyber resilience strategies.

While access to the vulnerability-hunting AI model remains limited to select organizations, cybersecurity experts warn that the technology demonstrates how rapidly evolving AI capabilities could reshape cyber threats targeting critical financial infrastructure.

According to recent cybersecurity updates highlighted by the World Economic Forum, banks with ageing legacy systems are facing increased pressure to identify and patch weaknesses before malicious actors begin exploiting similar AI-powered capabilities.

AI-Driven Cyber Risks Push Banks to Strengthen Defenses

The rise of AI-driven cyber risks has triggered warnings from financial regulators and international organizations concerned about the potential impact on global financial stability.

The European Central Bank has urged banks across the eurozone to prepare urgently for future cyberattacks. Frank Elderson, a member of the ECB Executive Board, warned that institutions cannot afford to delay cybersecurity improvements simply because they lack direct access to tools like Mythos.

Smaller banks are also receiving shared intelligence and vulnerability findings from larger financial institutions to improve sector-wide preparedness.

The International Monetary Fund has similarly cautioned that rapidly evolving AI-enabled cyber threats could destabilize financial systems if not properly managed.

A recent World Economic Forum report developed in collaboration with KPMG examined how organizations can deploy AI securely in cybersecurity operations.

The report, titled Empowering Defenders: AI for Cybersecurity, outlined four levels of AI autonomy and warned that while machine-speed responses improve defense capabilities, reduced human oversight may increase operational risks if errors go undetected.

Canvas Breach Raises Questions About Ransom Payments

Another major cybersecurity development involved the company behind the widely used education platform Canvas.

Instructure confirmed it had reached an agreement with hackers responsible for stealing approximately 3.5 terabytes of student and university data during a cyberattack that disrupted institutions across the US, Canada, Australia, and the UK earlier this month.

The company said the agreement prevented the publication of the stolen information and included what it described as “digital confirmation” that the data had been destroyed. However, the organization did not clarify whether a ransom payment was involved.

The incident has reignited debate around ransomware negotiations and cyber extortion tactics. Many cybersecurity experts warn that paying attackers does not guarantee stolen data will actually be deleted and could encourage future attacks.

Research cited in the report showed that 58% of Chief Information Security Officers surveyed by a US cybersecurity company said they would consider paying hackers to minimize operational disruption.

Cybersecurity analysts also warned that modern ransomware attacks increasingly involve “double extortion” tactics, where attackers steal sensitive data before encrypting systems and demanding payment.

Growing Cybersecurity Concerns Around Global Events and AI Threats

Cybersecurity experts are also warning about threats connected to major international events, including the upcoming 2026 FIFA World Cup hosted across the United States, Canada, and Mexico.

Researchers believe the tournament could become a high-profile target for cybercriminals because of its global visibility and heavy reliance on digital infrastructure. Security experts have already reported increased phishing campaigns, fake ticket scams, and fraudulent websites targeting football fans.

Meanwhile, new cyberattacks linked to the threat group Ghostwriter have reportedly targeted government organizations in Ukraine using phishing emails disguised as communications from a local telecommunications company.

Google also disclosed what researchers described as the first AI-generated zero-day exploit designed to bypass two-factor authentication systems. Security experts believe the discovery prevented what could have become a large-scale exploitation campaign.

Separately, OpenAI confirmed that two employee devices were affected during the recent TanStack supply chain attack. The company stated there was no evidence that customer data, production systems, or intellectual property had been compromised.

German authorities also dismantled a revived version of Crimenetwork, a cybercriminal marketplace linked to illegal trade involving stolen data, drugs, and forged documents. Law enforcement agencies estimate the platform generated more than $4.2 million in revenue.

The latest developments reflect growing concern among governments, regulators, and cybersecurity leaders that AI-powered cyber threats, ransomware operations, and increasingly sophisticated criminal ecosystems are reshaping the global cybersecurity landscape.