ECB and ESRB Urge Banks to Prepare for AI-Enabled Cybersecurity Threats

Thumbnail Image

The information displayed in the AIM should not be reported as representing the official views of the OECD or of its member countries.

The European Central Bank and European Systemic Risk Board have directed eurozone banks to submit AI-focused cybersecurity strategies by October 31, amid concerns that advanced AI models could enable large-scale cyberattacks, disrupt financial systems, and erode public trust. Regulators emphasize urgent modernization and risk mitigation.[AI generated]

Why's our monitor labelling this an incident or hazard?

The article explicitly mentions AI systems (emerging AI models) that can identify vulnerabilities and generate exploitation tools, which could plausibly lead to cybersecurity incidents affecting critical infrastructure (financial institutions). No actual harm or incident is reported yet, but the ECB's warning and call for action indicate a credible risk of future harm. Therefore, this event fits the definition of an AI Hazard, as it concerns plausible future harm from AI-related cybersecurity threats.[AI generated]
AI principles
Robustness & digital securitySafety

Industries
Financial and insurance servicesDigital security

Affected stakeholders
BusinessGeneral public

Harm types
Economic/PropertyReputationalPublic interest

Severity
AI hazard

AI system task:
Content generationReasoning with knowledge structures/planning


Articles about this incident or hazard