Cyberattacks have long affected both organizations and individuals around the world. From phishing scams and social engineering attacks to ransomware and data breaches, cybercriminals have continuously adapted their tactics to exploit new technologies and changing behaviors.

The rise of artificial intelligence (AI) has accelerated that evolution. Tasks that once required significant time, technical expertise, and manual effort can now be completed more quickly and at greater scale. Phishing messages are becoming more convincing, scams more personalized, and attacks easier to execute.

While these developments are playing out globally, their impact is increasingly visible at the local level. In the Philippines, AI-assisted scams, phishing campaigns, and automated cyberattacks reflect many of the same trends shaping the global threat landscape, offering a closer look at how these threats affect both consumers and businesses.

In this article, we break down how AI has rewritten the rules of cyberattacks, what it looks like for consumers and businesses in the Philippines, and why the two sides of this problem are more connected than most people realize.

What AI Changed About Cyberattacks

Cyberattacks used to require a combination of technical skill, time, and patience. An attacker had to manually identify a target, research it, craft a believable approach, and find a way in. That process was slow enough that a reasonably alert person or organization had a chance to notice something was wrong.

Here is what a realistic attack timeline looked like before AI:

  • Days 1 to 3: Manual reconnaissance. Research the target, find exposed systems, map the attack surface.
  • Days 4 to 7: Craft the approach. Write phishing emails, build lures, source or develop the tools.
  • Days 8 to 14: Execute carefully. Move slowly to avoid triggering alerts.
  • Week 3 onward: Wait for credentials, escalate access, and move toward the objective.

With AI, that entire sequence now takes under 48 hours.

AI handles reconnaissance in minutes: scraping websites, mapping exposed systems, and identifying software versions before a human attacker has even opened a browser. Phishing messages that used to be caught by poor grammar or generic phrasing are now personalized, contextually specific, and built from publicly available data about the target. Tools that previously required deep technical skill can now be assembled with AI assistance.

The numbers reflect how much ground has already been lost. For organizations and government agencies, Fortinet's 2026 global threat report recorded a 389% increase in ransomware victims linked to AI-enabled cybercrime. Ransomware locks victims out of their own systems and demands payment for access to be restored.

For everyday consumers, the equivalent is phishing. Check Point Research documented a 423% surge in phishing sites targeting the Philippines in 2025 alone. These are fake pages built to steal credentials, banking details, and personal information from individuals. Both numbers point to the same shift: AI has made it economically viable to run attacks at a scale that was not possible before.

What This Looks Like for Consumers

For many Filipinos, AI-assisted attacks arrive through the platforms they use every day: text messages, email, social media, and messaging apps.

Smishing (SMS-based phishing) has become the dominant threat vector in the Philippines. Messages impersonating GCash, BDO, Landbank, or courier services like J&T and LBC are now generated at scale, personalized using publicly available data, and sent in volumes that make filtering difficult. The messages do not look like scams. They look like legitimate notifications, because they were built to.

Deepfake technology has added a layer that most people are not prepared for. In 2025, a Filipino doctor lost ₱93 million to an investment scam built around an AI-generated video of President Marcos. The video was convincing enough to override skepticism because the production quality was high enough to clear the threshold of doubt. The same technology is being used in love scams, fake job recruitment, and celebrity-endorsed investment fraud targeting everyday consumers.

AI-powered love scams alone resulted in victims recovering over P20 million in 2025, with P1.2 million recovered in January 2026 alone. These are not unsophisticated operations. They use automated conversations, staged video calls, and fabricated profiles built to establish trust over weeks before the actual deception happens.

For consumers, the practical risk is this: the signals that used to indicate a scam (poor grammar, generic greetings, suspicious links) are no longer reliable. AI has neutralized those signals. What used to be a gut-check is now a judgment call that requires more deliberate scrutiny.

What This Looks Like for Businesses

For businesses, the impact operates at a different scale but follows the same logic: AI has made attacks faster, more targeted, and harder to anticipate.

The entry point is often a person, not a system. A finance officer who receives a well-crafted phishing email, a customer service agent who clicks a malicious link, an executive whose voice is cloned to authorize a fraudulent transaction: these are not edge cases. They are documented patterns appearing across Philippine organizations right now. And they are effective precisely because they bypass technical defenses by targeting human judgment instead.

The exposure extends beyond people to public-facing systems. Websites, login portals, mobile apps, and APIs are continuously being probed by automated tools looking for exploitable weaknesses. A vulnerability disclosed today can be actively exploited within hours, before most security teams have had a chance to assess whether they are affected.

A Fortinet study published in May 2026 found that 57% of Philippine organizations now identify AI-driven cyberattacks as a primary concern. Only 16% have reached an advanced security posture, meaning the majority of local businesses are facing a faster, more automated threat environment with defenses that have not kept pace.

In the third quarter of 2025 alone, over 52 million Filipino user credentials were exposed across dozens of breach incidents, a 49% increase from the prior quarter. Those credentials came from organizations across fintech, retail, healthcare, and local government. The DICT reported that more than 20,000 vulnerabilities were exploited by organized threat groups during this period, affecting agencies including DENR, DA, and the Philippine Coast Guard.

The scale of exposure is no longer hypothetical. It is already documented.

The Connection Between the Two

Consumer-facing attacks and business-facing attacks are not separate problems. They feed each other.

When a consumer's credentials are exposed in a phishing attack, those credentials are often used to access business platforms, internal systems, or corporate accounts. When a business fails to secure its customer-facing app, it exposes the personal data of thousands of consumers who trusted it with their information.

The Philippine Data Privacy Act of 2012 places legal obligations on organizations to protect the personal data of their customers. AI-assisted breaches that expose that data are not just a security problem. They carry compliance consequences, regulatory scrutiny from the National Privacy Commission, and reputational damage that is difficult to recover from.

This is why the conversation about AI and cyberattacks cannot be siloed. Businesses that understand the consumer-level threat are better at anticipating how their own systems become entry points. Consumers who understand the business-level exposure are better at recognizing when their personal information has been put at risk by a company they trusted.

What This Means Going Forward

The Philippine government has responded. President Marcos approved a National Cybersecurity Plan. The DICT and the House ICT Committee are advancing a Cybersecurity Act with mandatory incident reporting requirements. The NPC's 2026 Privacy Awareness Week centered on responsible AI governance as a core data protection obligation.

These are signals that the compliance bar is being raised. Organizations that wait for enforcement to act will already be behind. The gap between where most Philippine businesses are today (with only 16% at an advanced security posture) and where regulations are heading is not a comfortable one to sit in.

The rise of AI has not changed what cybercriminals want. They still seek access to systems, sensitive data, and financial assets. What has changed is how efficiently they can pursue those goals. As AI continues to evolve, both organizations and individuals will need to rethink the assumptions they use to identify and respond to cyber threats.

For businesses, the practical question is not whether AI-driven threats are real. The data makes that clear. The question is whether your current approach to security testing gives you visibility into your exposure before an attacker finds it first.

If your organization is ready to assess where it stands, reach out to the Secuna team at [email protected] or visit secuna.io.

Sources: Fortinet 2026 Threat Report · Fortinet/IDC PH Study, May 2026 · Check Point Research: 423% Phishing Surge · 52M Credentials Exposed, Q3 2025 · AI-Powered Love Scams · PNA: AI Threats Outpacing PH Readiness · National Cybersecurity Plan · DICT Cybersecurity Act Push · NPC PAW 2026 · Phishing & Smishing Surge