Episode Details
Back to Episodes
87% of Companies Were Hit by an AI Cyber Attack. The Fix Is a Skills Problem, Not a Headcount One
Description
This story was originally published on HackerNoon at: https://hackernoon.com/87percent-of-companies-were-hit-by-an-ai-cyber-attack-the-fix-is-a-skills-problem-not-a-headcount-one.
AI-driven attacks hit 87% of organizations last year. Why the cybersecurity bottleneck is now skills, not headcount and how AI security became its own discipl
Check more stories related to undefined at: https://hackernoon.com/c/undefined.
You can also check exclusive content about #cybersecurity, #ciat, #cybersecurity-skills, #software-engineering, #llms, #machine-learning, #ai, #good-company, and more.
This story was written by: @ishanpandey. Learn more about this writer by checking @ishanpandey's about page,
and for more stories, please visit hackernoon.com.
Cybercrime is on track to cost $10.5T a year; 87% of organizations were hit by an AI-driven attack in the past year, and only about 26% feel confident they can detect one.
The binding constraint is people, not tools. In 2025, ISC2 stopped publishing its long-running "4.7M-person workforce gap" and reframed the problem as skills: 95% of teams report a gap and AI is the #1 most-needed skill (41%), for the second year running.
AI security is professionalizing into its own discipline. CompTIA's SecAI+ (launched Feb 2026) is the first certification built solely for it — weighted 40% toward hands-on defense of AI systems, not theory.
The under-covered frontier is insider / "shadow AI" risk — staff pasting sensitive data into AI tools — which CIAT's Brad Smith flags as a top challenge alongside AI-powered phishing.
Employers want "force multipliers," not replacements; the durable skill is the dual ability to defend AI systems and deploy AI defensively, with the governance literacy to manage the risk. Cybercrime is on track to cost $10.5T a year; 87% of organizations were hit by an AI-driven attack in the past year, and only about 26% feel confident they can detect one.
The binding constraint is people, not tools. In 2025, ISC2 stopped publishing its long-running "4.7-million-person workforce gap" and reframed the problem as skills — 95% of teams report a gap, and AI is the #1 most-needed skill (41%).
AI security is professionalizing into its own discipline: CompTIA's SecAI+ (Feb 2026) is the first certification built solely for it, weighted 40% toward hands-on defense of AI systems.
The under-covered frontier is insider / "shadow AI" risk — staff pasting sensitive data into AI tools — which CIAT's Brad Smith flags as a top challenge alongside AI-powered phishing.
Employers want force multipliers, not replacements: the durable skill is defending AI systems and deploying AI defensively, with the governance literacy to manage the risk.