“The Five Eyes spy alliance has warned that advanced artificial intelligence could outpace current cybersecurity defenses within months, not years, citing risks from AI-enhanced hacking and the need for urgent preparedness.” According to a joint statement from the intelligence agencies of Britain, the U.S., Australia, Canada, and New Zealand, “the rapid pace of frontier AI development means cyber risk assumptions can become outdated in months, not years.” This warning follows recent actions by tech firm Anthropic, which suspended access to its AI models after a U.S. national security order restricted foreign access.
Five Eyes Alliance Warns of AI-Driven Cyber Threats
The Five Eyes intelligence alliance, comprising the U.S., U.K., Australia, Canada, and New Zealand, issued a stark alert on June 20, 2026, stating that AI advancements could render existing cybersecurity frameworks obsolete “within months, not years.” The agencies emphasized that AI “lowers barriers for malicious actors and increases the speed and complexity of attacks,” urging governments and businesses to act swiftly. “Breaches will occur. Preparedness helps you contain them quickly and prevent escalation into major operational and financial crises,” the statement added.
This warning comes amid growing concerns over AI’s dual role as both a threat and a tool for defense. The alliance cited the example of startup Anthropic, which recently suspended access to its Mythos 5 and Fable 5 models following a U.S. government directive banning foreign nationals from using the systems. The move underscores tensions between AI innovation and national security, as the White House has historically advocated for relaxed AI regulations despite this intervention.
National Cyber Security Centre Urges Immediate Cyber Resilience
The National Cyber Security Centre (NCSC) echoed the urgency, stating that “frontier AI models are anticipated to exceed current industry expectations, fundamentally transforming both offensive and defensive cyber capabilities.” The agency emphasized that “the timeline is not years, it is months,” and called on leaders to “understand and assess risk, readiness, and accountability.”
The NCSC’s guidance highlighted the need for organizations to prioritize foundational cybersecurity practices, empower cyber leaders with resources, and integrate security into core business strategies. “Success will come from getting the basics right, acting quickly, and integrating cyber security into core business strategy,” the report stated. This aligns with the Five Eyes’ emphasis on proactive measures but adds a focus on embedding resilience into organizational culture.
Anthropic’s Suspension Reflects Broader Tensions
Anthropic’s decision to restrict access to its AI models highlights the growing intersection of AI development and national security. The company, which had recently launched Fable 5, faced a U.S. directive requiring it to block foreign nationals from using its systems. This intervention contrasts with the Biden administration’s broader push to reduce AI regulations, raising questions about how governments balance innovation with risk management.
The suspension also reflects the dual nature of AI: while it can enhance cybersecurity through threat detection and response, it also empowers malicious actors to conduct attacks at unprecedented speeds. The Five Eyes alliance and NCSC both stress that organizations must “integrate AI tools into their security operations” to counter these evolving threats.
What This Means for Businesses and Governments
The warnings from the Five Eyes and NCSC signal a critical shift in how cybersecurity is perceived. Organizations are now under pressure to adopt AI-driven defenses rapidly, update legacy systems, and limit access to critical infrastructure. Experts caution that the window for preparation is narrow, with the NCSC noting that “cyber resilience is integral to advancing business continuity, market confidence, and long-term value.”
For governments, the situation underscores the need for coordinated policies that address both AI’s potential and its risks. The U.S. government’s intervention in Anthropic’s operations illustrates the growing role of regulatory oversight in AI development, even as policymakers advocate for lighter touch approaches.
Looking Ahead: The Race to Outpace AI-Driven Threats
As AI capabilities continue to evolve, the race to secure digital infrastructure has become a priority for both public and private sectors. The Five Eyes alliance and NCSC agree that the next 12 months will be pivotal in determining whether organizations can adapt to the pace of change. Key steps include investing in AI-powered security tools, fostering cross-sector collaboration, and revising risk management frameworks to account for AI’s accelerating impact.
For now, the message is clear: cyber threats driven by AI are not a distant possibility but an imminent reality. The question remains whether the world can keep pace with the technology it has unleashed.
“Breaches will occur. Preparedness helps you contain them quickly and prevent escalation into major operational and financial crises.” — Five Eyes joint statement.
Find more reporting in our Business section.
