As measured by the 2026 Verizon Data Breach Investigations Report, AI is raising the throughput of cyberattacks rather than the underlying capability of attackers, because AI-assisted intrusions overwhelmingly scale known techniques rather than generate novel ones; the more consequential 2026 shift is that vulnerability exploitation has overtaken stolen credentials as the leading initial-access vector, and together these redirect enterprise defensive priority toward patch velocity and identity hygiene over hunting novel AI-authored threats.
Anchored on the 2026 Verizon DBIR (published late May 2026), which draws in part on a collaboration covering 793 enforcement-actioned threat actors. Load-bearing figures from the report as reported: under 2.5% of observed techniques qualified as rare or novel; 44% of AI-assisted initial access was still phishing; vulnerability exploitation (around 31% of breaches) overtook stolen credentials as the leading initial-access vector for the first time; a large majority of privilege-escalation incidents involved no named CVE; shadow-AI use rose from 15% to 45% of workers (Verizon describes this as a fourfold rise in its data-loss dataset); third-party involvement in breaches climbed toward 48% of the total. Scope: a snapshot of attacker behaviour as measured in this report, NOT a claim that AI can never produce novel offensive capability; the defensive-priority inference (patch velocity + identity hygiene over novel-threat hunting) is editorial advisory built on the data. VERIFIED 2026-05-29: DBIR published 19 May 2026; vulnerability exploitation at 31% as the #1 initial-access vector (first time in 19 years), under 2.5% rare techniques, 44% of AI-assisted initial access still phishing, the 793-actor Anthropic collaboration (Mar 2025-Feb 2026), shadow-AI 15%->45% (fourfold), and third-party 48% all confirmed via the Verizon newsroom and PushSecurity/SpyCloud/SCWorld analyses. Canonical: verizon.com/business/resources/reports/dbir/. 90-day review cadence (27 Aug 2026). Trigger conditions to revisit before next cadence: (a) the 2027 DBIR or comparable incident data shows AI generating materially novel techniques at scale, which would move the claim toward Partial or Not holding; (b) stolen credentials retake the leading initial-access position, weakening the vulnerability-exploitation half of the claim; (c) a documented at-scale AI-native attack technique with no human-era analogue. Related published corpus: /approved-tool-unapproved-capability-shadow-ai/ (the shadow-AI discovery problem the 45% figure points at) and /owasp-agentic-ai-top-10-walkthrough/ (the agent-specific identity-hygiene controls).
/holding/AM-190/Embed this claimiframe + oEmbed
The card auto-updates when the claim's status, last-reviewed date, or correction log changes. Embedders never need to refresh — the card is rendered live from the canonical record.
Email-me when AM-190's status, next review date, or correction log changes. One email per change. No newsletter subscription, no other mail.
The claim: As measured by the 2026 Verizon Data Breach Investigations Report, AI is raising the throughput of cyberattacks rather than the underlying capability of attackers, because AI-assisted intrusions overwhelmingly scale known techniques rather than generate novel ones; the more consequential 2026 shift is that vulnerability exploitation has overtaken stolen credentials as the leading initial-access vector, and together these redirect enterprise defensive priority toward patch velocity and identity hygiene over hunting novel AI-authored threats.
About this register
The Reporting register tracks claims published from articles addressed to senior enterprise IT leaders — CIOs, IT directors, heads of platform. Claims are reviewed on a 30–90 day cadence; each review either reaffirms the claim, marks one substantive part as Partial, or marks it Not holding once the underlying evidence has been overtaken.
Recent corrections in Reporting
- AM-003 · Partial · 28 May 2026
Pricing/model drift: a $100/mo Pro tier now sits beside the $200 tier (added 9 Apr 2026) and the premium model is GPT-5.5 Pro. Core thesis holds; the single-$200-tier framing no longer matches. Re-verify current tiers at chatgpt.com/pricing.
- AM-002 · Not holding · 06 May 2026
URL state changed. The /the-agentic-ai-revolution-real-world-success-stories-and-strategic-insights-from-2024-2025/ slug now serves a deliberately rewritten retrospective (claimId AM-130, "Agentic AI 2024-2025 retrospective", published 04 May 2026) against audited primary sources. The 28 Apr 2026 redirect to /retractions/ has been lifted to allow that. AM-002 the claim remains Not holding — the original $3.50/dollar + 70% failure-rate framing was withdrawn and is not restored. AM-130 is a separate claim with its own evidence chain. Readers arriving at /holding/AM-002 see the withdrawal here; the article link surfaces the new piece at the URL the original lived at, with this entry as the audit trail.
- AM-121 · Holding · 2 May 2026
Klarna walk-back primary-source upgrade — added Siemiatkowski verbatim quotes via Bloomberg-cited-by-Fortune (9 May 2025) and the Uber-style freelance hiring detail via Entrepreneur. Closes the highest-priority evidence gap from the source dossier.
Reviews coming up in Reporting
- AM-136 · Holding · next +5d (4 Jun 2026)
Across the 24-month window May 2024 to April 2026, every major foundation-model provider (Anthropic, OpenAI, Google, AW…
- AM-020 · Holding · next +19d (18 Jun 2026)
The 40-60% TCO underestimate on enterprise agentic-AI deployments is not a cost-visibility failure — it is a cross-depa…
- AM-023 · Holding · next +19d (18 Jun 2026)
The 10 Apr 2026 Google AI Mode rollout to eight markets is the first vertical (restaurant booking) where agentic search…