AI is accelerating cybercrime and raising the stakes for Philippine businesses

With reported cases tripling in a single year, artificial intelligence is becoming a force multiplier for fraud, deepfakes, and hacking-as-a-service.

Cybercrime in the Philippines nearly tripled in a single year, with reported cases rising from 3,317 in 2023 to 10,004 in 2024, according to the Cybercrime Investigation and Coordinating Center (CICC). Losses linked largely to consumer fraud reached almost P198 million. The numbers point to a growing problem, but the deeper issue is how quickly technology—particularly artificial intelligence—is changing the scale and speed of cybercrime.

AI has become a force multiplier for cyber attackers, Fortinet said in its 2026 Cyberthreat Predictions Report, with tools that once took days of planning and deep technical skill now deployable in minutes. 

The lower barrier has widened the pool of offenders and sped up attacks. For Philippine businesses, cyber threats are no longer occasional disruptions but constant operational risks that affect finances, systems, and customer trust.

AI as a force multiplier

Large language models (LLM) are a key driver of this shift. While there is no dedicated “criminal AI,” attackers are increasingly exploiting and bypassing safeguards in existing systems to automate phishing, fraud, and identity theft. This shift has made cybercrime faster, cheaper, and harder to detect, especially for small and mid-sized companies without large security teams.

Deepfake technology adds another layer of risk. AI-generated voices, faces, and documents are now realistic enough to fool employees, banks, and verification systems. In practice, the situation exposes ordinary workers and customers to fraud, while companies face potential financial losses and erosion of trust.

The rise of hacking-as-a-service compounds the problem. Sophisticated tools are now sold or shared online at minimal cost, allowing even low-skilled actors to launch attacks. AI-assisted methods to bypass Know Your Customer checks have become more common, giving criminals easier access to financial platforms and sensitive data.

Defending with intelligence

In response, cybersecurity innovation is shifting toward automation and integration. Fortinet is pushing AI-enabled security systems that can continuously assess vulnerabilities, prioritize risks, and respond in real time. Approaches such as continuous threat exposure management aim to reduce the gap between detecting a threat and stopping it.

People remain central to this equation. The Philippines, like much of the world, faces a shortage of cybersecurity professionals. Fortinet is expanding training programs and partnerships with schools to help build local talent, as new roles increasingly require both cybersecurity and AI skills. These efforts are as much about protecting livelihoods as they are about protecting systems.

International cooperation: Operation Serengeti 2.0

Cybercrime is also forcing stronger international cooperation. Fortinet’s work with groups such as Interpol reflects the reality that attacks do not stop at national borders.

One recent operation cited by Fortinet Philippines country manager Bambi Escalante—Interpol’s Operation Serengeti 2.0—resulted in more than 1,000 arrests, the takedown of 11,000 malicious networks, and the recovery of $100 million in stolen assets.

AI remains a double-edged tool. It enables faster attacks, but it also helps defenders sift through alerts, detect patterns, and respond more efficiently. The challenge for Philippine businesses is keeping pace as innovation accelerates on both sides.

As more services move online, cybersecurity becomes less about abstract digital threats and more about everyday impact, such as protecting savings, jobs, and trust. Truly, the cost of falling behind is rising, and adapting is no longer optional. 

 

 

Cybercrime cases in the Philippines nearly tripled in 2024, driven in part by the rapid misuse of artificial intelligence. From deepfakes to hacking-as-a-service, new tools are allowing attacks to scale faster than many organizations can defend against.

 

 

READ: