Rising Cyber Threats Targeting SMBs in 2026 Exploit Fake AI Tools and Phishing

Small and medium-sized businesses face a surge in cyberattacks involving counterfeit AI tools and communication apps, while weaker defenses make them prime targets.

Editorial Team · Jun 25, 2026 · 2 min read · Source: securelist.com

Small and medium-sized businesses (SMBs) continue to attract cybercriminals in 2026, with attackers increasingly using fake artificial intelligence (AI) tools and communication platforms to breach defenses. Data from Kaspersky reveals a sharp rise in malware disguised as popular AI services, placing SMBs at heightened risk amid evolving cyber threats.

Between January and April 2026, Kaspersky’s security solutions intercepted over 33,000 attacks where malicious software or potentially unwanted applications mimicked widely used AI tools. This represents nearly a fivefold increase compared to the previous year and exceeds attacks camouflaged as office or collaboration tools by a significant margin. Fraudsters leverage the popularity and rapid adoption of AI by small businesses to deceive and defraud them effectively.

Besides fake AI applications, attackers frequently impersonate popular messenger and video conferencing services to lure SMB users, with nearly 415,000 such attacks recorded. Among the favored AI-themed lures were new entrants like Claude and OpenClaw, which have gained traction in 2026. These deceptive methods often aim to steal money or infiltrate corporate accounts on social media.

The consequences extend beyond direct attacks. Many initial access points sold on the dark web originate from SMBs, likely due to their relatively weaker cybersecurity measures. These businesses often serve as trusted vendors or contractors for larger enterprises, making their compromised systems potential gateways into more robust corporate networks.

Kaspersky’s analysis draws from anonymized data collected through its Security Network, focusing specifically on SMB users. This underscores the cybersecurity paradox faced by smaller businesses: while embracing digital transformation and AI adoption optimistically, they become vulnerable to sophisticated threat actors exploiting these very trends.

The Small Business & Entrepreneurship Council highlights that SMB owners generally maintain a positive economic outlook and continue adopting digital tools. However, the surge in cyberattacks using fake AI services calls for increased awareness and strengthened security policies tailored specifically to the SMB sector.