Smarter Scams: Generative AI’s Impact on Email Phishing

The rise of generative AI and large language models in the past couple of years has impacted various industries. This study investigates how generative artificial intelligence has transformed the landscape of phishing attacks, reshaping both the methods employed by attackers and the strategies required for defense. Through in-depth interviews with five cyber security experts, the research explores how generative AI enhances the sophistication, scalability, and personalization of phishing campaigns, enabling attackers to craft highly convincing messages that bypass traditional detection methods. On the defensive side, the study highlights both the capabilities and limitations of current tools and emphasizes that continuous employee training and a strong cybersecurity culture remain essential components of an effective defense strategy. This research contributes to the understanding of how generative AI amplifies both the threat and the defense in modern phishing, offering key insights for organizations aiming to adapt to an evolving cyber threat landscape.