Tech Monitor: Why foundational defences against ransomware matter more than the AI threat

Ben Lister, head of threat research at NetSPI, in an article published on Tech Monitor, makes the case that companies should focus on getting the basics of cybersecurity right, rather than worrying about hypothetical AI-driven ransomware threats. Read the preview below or view it online.

+ + + 

The real danger isn’t AI, it’s complacency.

Regarding “Why foundational defences against ransomware matter more than the AI threat” (NetSPI, July 25): While AI is reshaping aspects of the cyber threat landscape, most ransomware attacks still rely on tried-and-tested methods like phishing, poor credential hygiene, and misconfigured systems.

According to the 2025 Cyber Security Breaches Survey, ransomware incidents doubled year-on-year, driven less by AI innovation and more by the rise of ransomware-as-a-service (RaaS), which enables even low-skilled criminals to launch disruptive campaigns. Breach and attack simulation (BAS) tools are emerging as a critical countermeasure, providing continuous, real-world testing to close security gaps between traditional annual or biannual assessments.

Lister warns that the unregulated use of AI within organisations, so-called “shadow AI”, may present a more immediate risk than AI-powered ransomware itself, as it expands the attack surface and complicates incident response. His advice to security leaders: resist chasing speculative threats, and instead strengthen fundamental defences, maintain constant vigilance, and keep ransomware prevention grounded in real-world tactics.

You can read the full article here.