AI is rapidly changing how cybercriminals operate. Social engineering, once easy to spot, has entered a new era. Phishing emails that used to be riddled with spelling mistakes and clumsy language are now polished, persuasive, and tailored using data scraped from social media and other online sources. The result? Messages that look legitimate enough to trick even the most security-aware employees.In this episode of Security Strategist, host Trisha Pillay sits down with Director of Threat Research at N-able, Kevin O’Connor to unpack how AI is reshaping phishing and what it means for businesses, especially small and medium-sized organizations that often lack the resources to keep up. Drawing on insights from the N-able Threat Report, O’Connor explains why traditional defenses and old-school user training aren’t enough to stop today’s AI-crafted scams.O’Connor says:“In the past, phishing emails were easy to spot, you’d see clumsy grammar mistakes, generic wording, they were just very obvious. But with the new wave of AI-enabled phishing emails, we’re seeing tailored attacks that pull from social media profiles and other sources. These messages are highly polished, they look convincing, and the worrying part is that attackers can now do this at scale. That means even IT professionals and security pros are at risk.”Why Even Experts Are Falling for AI-Powered PhishingDrawing on insights from the latest N-able Threat Report, this is why the shift is so dangerous:AI is changing the landscape of social engineering. Messages are tailored, credible, and increasingly difficult to block or filter.Phishing emails are now more convincing than ever. Attackers can create unique, targeted scams instead of blasting out obvious mass emails.Even experts are vulnerable. IT teams and security professionals are no longer immune.User training must evolve. Old advice like “look for spelling mistakes” won’t cut it anymore. Employees need new skills to recognize modern threats.The conversation also looks ahead at what enterprises can do now to strengthen defenses, updating training, and preparing for a future where AI will play a role on both sides of the cybersecurity battle.TakeawaysAI is changing the landscape of social engineering.Phishing emails are now more convincing than ever.Even tech-savvy employees can fall for scams.SMBs are increasingly targeted due to their vulnerabilities.User training must evolve to address modern threats.Two-factor authentication is critical for financial transactions.Organizations need to know their data exposure.Incident response planning is essential for preparedness.Automated responses can enhance security measures.The threat of compromise is a matter of when, not if.Chapters00:00 Introduction to AI-Driven Threats02:09 The Evolution of Phishing with AI05:42 The Rise of Attacks on SMBs08:56 Preventative Measures for Organizations12:36 The Future of AI in CybersecurityAbout Kevin O’ConnorKevin O’Connor is the Director of Threat Research at 

Ver todos los episodios