Emerging markets most exposed to AI-powered cyberattacks

By Vriti Gothi

AI-powered cyber threats are reshaping the global risk landscape, exposing critical vulnerabilities in emerging digital economies, according to a report by Check Point. The study finds that the growing use of artificial intelligence by cybercriminals is enabling large-scale, automated attacks that increasingly target countries with weaker cybersecurity infrastructure rather than those with the highest income levels.

Indonesia ranks as the most exposed market globally, with 48.8% of connected devices including computers, smartphones, and other internet-enabled systems, subject to cyberattacks. The report attributes this to a combination of limited cyber defence capabilities and expanding digital adoption. Indonesia scores 47.5 out of 100 on the National Cyber Security Index, reflecting gaps in protection frameworks that are being exploited by AI-driven attack tools. Infostealer malware impacts 16% of devices, while botnets account for 21%, indicating widespread compromise across both consumer and enterprise environments.

Mongolia follows, with 30% of devices under attack at any given time. Despite relatively high internet penetration of 85%, the country’s cybersecurity readiness remains moderate, scoring 50 out of 100. Limited financial resources further constrain investment in advanced protection systems, leaving digital infrastructure exposed to automated threats that can scale rapidly.

Mexico ranks third, with 29% of devices targeted. The report highlights botnets (10.6%) and ransomware (8.4%) as the primary attack vectors. With an internet penetration rate of 81% and a cybersecurity score of just 38 out of 100, Mexico faces a combination of high digital exposure and weak defence mechanisms. The country’s middle-income profile also makes it an attractive target, as attackers perceive sufficient financial return from compromised systems.

In contrast, wealthier economies in the Gulf region face a different risk dynamic. Saudi Arabia, ranked fourth, sees 28.5% of devices targeted—lower than several emerging markets—but the financial impact of successful breaches is significantly higher. With average annual incomes around $35,000, losses per incident are amplified. The country has relatively strong cybersecurity defences, scoring 78.33 out of 100, yet high AI adoption rates estimated at 26% introduce new vulnerabilities, particularly across enterprise and government systems.

Georgia completes the top five, with 28% of devices exposed to cyber threats. While the country has improved its cybersecurity posture, scoring 64.17 out of 100, risks persist. Banking trojans alone affect 8% of accounts, highlighting ongoing threats to financial systems and digital banking infrastructure. Internet penetration stands at 82%, expanding the attack surface for malicious actors.

The report’s methodology draws on global cybersecurity monitoring data, analysing five primary threat vectors: botnets, infostealers, banking trojans, ransomware, and mobile malware. It also incorporates macroeconomic and digital indicators such as GDP per capita, internet usage, AI adoption, and national cybersecurity readiness to assess both exposure and potential financial impact.

A cybersecurity expert at Check Point noted a fundamental shift in attacker strategy: “Cybercriminals used to target the richest countries because that’s where the money was. But with AI coming into play, things are changing. Now, attackers can run automated campaigns that hit thousands of targets simultaneously, so they go after whoever has the weakest defences, regardless of money.”

For the FinTech sector, the findings underscore rising systemic risks as digital financial services expand across high-growth markets. The increasing use of AI in cyberattacks—particularly for credential theft, fraud, and account takeovers—poses a direct challenge to trust in digital payments and banking ecosystems. As adoption accelerates, the gap between innovation and security resilience is becoming more pronounced.

The report concludes that financial institutions and regulators must prioritise scalable, AI-driven defence mechanisms and strengthen cyber resilience frameworks. Without parallel investment in security infrastructure, the rapid growth of digital finance in emerging markets could leave critical systems increasingly exposed to sophisticated, automated threats.