AI-Powered Cybercrime Now Third-Largest Economy: These Companies Fight Back

Cybercrime is now the world's third-largest economy, and AI just handed both sides better weapons.

The Summary

• Fast Company's 2026 cybersecurity innovators list reveals every company is now using AI for defense because attackers already use it for offense.
• LLM-powered phishing, agentic hackers, and self-evolving malware have forced security teams to fight fire with fire.
• The new battle line: AI companies protecting AI systems from AI attacks, including Oligo Security, Upwind, and Cyera monitoring AI agents themselves.

The Signal

If cybercrime were a country, it would sit behind only the U.S. and China in GDP. That framing isn't hyperbole anymore. It's a measurement problem. Hospitals, power grids, and 911 systems now run on data infrastructure that attackers can reach from anywhere. The old security playbook assumed human attackers with human limitations. That assumption is dead.

Every company on Fast Company's 2026 list uses machine learning or generative AI in their core platform. Not as a feature. As the foundation. Teleport and Tailscale use AI for identity and access management. ReliaQuest, Silent Push, and 7AI deploy it for security operations and cyber risk management. Zero Networks handles microsegmentation. Pindrop Security fights deepfakes. The Johns Hopkins Applied Physics Lab secures industrial systems. Different problems, same tool.

The shift happened because attackers moved first. LLM-powered phishing emails scale infinitely and personalize perfectly. Agentic hackers don't sleep. Malware can now exploit your customer service chatbot to steal data, then rewrite itself to evade the patch you just deployed. Human security teams couldn't keep pace, so they automated the defense.

But here's the recursion problem: AI agents are now the attack surface. As agents take on bigger roles with access to more systems and data, they become the highest-value targets. Prompt injection attacks can hijack an agent's instructions. Data poisoning corrupts the training set. A coding error during a rushed AI feature sprint can open holes that won't show up in testing. The companies watching this most closely, Oligo Security, Upwind, and Cyera, are building AI to monitor AI. Meta-security for meta-systems.

The Implication

Security is no longer a cost center argument. Some CEOs quoted in the piece argue that strong cybersecurity is now a revenue accelerator because it lets enterprises deploy AI faster with more trust. That's the optimistic read. The pessimistic read is that weak security around AI will shatter the already thin public trust in these systems. Both are true. If you're building with AI agents, your security posture isn't just protecting data anymore. It's protecting the viability of the agent economy itself. Watch the companies building meta-security. They're not solving today's problem. They're solving the one that shows up when your agents start building other agents.

Source: Fast Company Tech