About
Research
Opportunities
Team
Analysis
Alumni
Updates
Donate
About
Research
Opportunities
Team
Analysis
Alumni
Updates
Donate
Assessing the risk of AI-enabled cyberattacks on the power grid

Assessing the risk of AI-enabled cyberattacks on the power grid

As AI systems become more capable, a key question is whether they could enable devastating cyberattacks. Several AI companies have committed to implementing significant safety mitigations prior to deployment, if their systems could meaningfully increase the risk of catastrophic harms. However, few quantitative threat models exist connecting specific AI capabilities to these harm thresholds. This report develops such a model for cyberattacks against critical infrastructure.

This report asks whether AI systems could enable a cyberattack on the US power grid causing $100 billion in economic damages. We focus on the power grid because blackouts have historically caused significant economic costs, and we have good empirical data from past incidents to ground our analysis. We use the $100 billion threshold for two reasons: it aligns with the quantitative definition of catastrophic risk in several AI safety frameworks, and prior scenario modeling has found that such damages are plausible for worst-case grid cyberattacks. We focus on catastrophic-level harms because they may warrant particularly stringent risk management—harms below this threshold remain important, and should not be overlooked in AI risk management.

We argue that, for AI to meaningfully increase the risk of such attacks, it would need to lower the significant barriers facing unsophisticated actors. We find this would require an extremely high level of AI capability—systems capable of automating most of the work of a large team of cyber-operatives with diverse skills. Systems meeting this threshold would likely have transformative impacts on society far beyond this threat model. We conclude that the $100 billion grid cyberattack scenario may not be well-suited for grounding AI safety policies, since the capability threshold is so high. In the immediate term, efforts to manage cyber risks may be better directed at threat models where catastrophic harms are bottlenecked by narrower technical capabilities.

Read paper
Read paper
Theme
Security
Date

November 4, 2025

author
s

Matthew van der Merwe

Share

Research Summary

Footnotes
Further reading

Related publications

Security

Spear Phishing with Large Language Models

May 2023
Research Paper
Julian Hazell

This study investigates how LLMs can be used for spear phishing, a form of cybercrime that involves manipulating targets into divulging sensitive information. It first explores LLMs’ ability to assist with the reconnaissance...

Security

Autonomous Weapons And Coercive Threats

December 2019
UCLE AI Pulse Paper
Ciara Sterbenz and Robert Trager

Governments across the globe have been quick to adapt developments in artificial intelligence to military technologies. Prominent among the many changes recently introduced, autonomous weapon systems pose important new...

Security

The Malicious Use of Artificial Intelligence: Forecasting, Prevention, and Mitigation

February 2018
Joint Report
Miles Brundage, Shahar Avin, Jack Clark, Helen Toner, Peter Eckersley, Ben Garfinkel, Allan Dafoe, Paul Scharre, Thomas Zeitzoff, Bobby Filar, Hyrum Anderson, Heather Roff, Gregory C. Allen...

This report was written by researchers at the Future of Humanity Institute, the Center for the Study of Existential Risk, OpenAI, the Electronic Frontier Foundation, the Center for a New American S...

Security

Assessing the risk of AI-enabled cyberattacks on the power grid

November 2025
Research Paper
Matthew van der Merwe

As AI systems become more capable, a key question is whether they could enable devastating cyberattacks. Several AI companies have...

Security

Spear Phishing with Large Language Models

May 2023
Research Paper
Julian Hazell

This study investigates how LLMs can be used for spear phishing, a form of cybercrime that involves manipulating targets into divulging sensitive information. It first explores LLMs’ ability to assist with the reconnaissance...

Security

Autonomous Weapons And Coercive Threats

December 2019
UCLE AI Pulse Paper
Ciara Sterbenz and Robert Trager

Governments across the globe have been quick to adapt developments in artificial intelligence to military technologies. Prominent among the many changes recently introduced, autonomous weapon systems pose important new...

Security

The Malicious Use of Artificial Intelligence: Forecasting, Prevention, and Mitigation

February 2018
Joint Report
Miles Brundage, Shahar Avin, Jack Clark, Helen Toner, Peter Eckersley, Ben Garfinkel, Allan Dafoe, Paul Scharre, Thomas Zeitzoff, Bobby Filar, Hyrum Anderson, Heather Roff, Gregory C. Allen...

This report was written by researchers at the Future of Humanity Institute, the Center for the Study of Existential Risk, OpenAI, the Electronic Frontier Foundation, the Center for a New American S...