Major Shifts and Escalating Cyber Risks: A Growing Threat to Companies and Contact Centers

As the global pace of digital transformation accelerates at an unprecedented rate, cybersecurity has surged to the forefront of corporate agendas.

What was once viewed as a technical niche within IT departments is now a critical priority for boards of directors worldwide.

Entering 2026, cyberattacks have become one of the most severe threats to business continuity, according to Auxis.

This is particularly true for data-driven sectors that rely on direct customer interaction, such as contact centers and Customer Experience (CX) services.

For the fourth consecutive year, “Cyber Incidents” ranks as the top global risk in the Allianz Risk Barometer, driven by the complexity of breach methods and the rapid adoption of cloud computing, remote work, and Artificial Intelligence (AI).

AI: Redefining the Rules of Attack and Defense

The rapid evolution of AI is a primary factor reshaping the cyber threat landscape.

The proliferation of Generative AI (GenAI) and Agentic AI has lowered the barrier to entry for hackers, enabling sophisticated, large-scale attacks at a significantly lower cost.

According to the Check Point 2025 Cyber Security Report, organizations globally face an average of 1,673 cyberattacks per week—a 44% increase over the previous year.

Contact centers are among the most targeted environments due to their reliance on vast customer databases, call recording systems, and omnichannel platforms.

Contact Centers in the Crosshairs

Contact centers are pivotal to managing customer experience, making them a “honey pot” for cybercriminals.

Threats range from Voice Phishing (Vishing) and CRM breaches to exploiting vulnerabilities in remote-access platforms.

Security reports indicate that AI-powered attacks can now mimic the voices of company executives or contact center managers with high precision.

These “deepfake” voices are used to execute internal fraud or deceive employees into granting access to sensitive data and restricted systems.

Data Breach Costs Hit Record Highs

Despite advancements in detection and response, the financial burden of data breaches remains staggering.

The IBM Cost of a Data Breach Report 2025 estimates the global average cost at $4.44 million, noting that AI and automation have helped reduce detection times.

However, the outlook is bleaker in the United States, where the average cost has soared to $10.22 million—the highest globally—due to stringent regulatory fines and multiple oversight bodies.

These figures pose an additional challenge for BPO firms handling international clients and operating under strict regulations such as GDPR and HIPAA.

The Gap Between Risk and Security Spending

Despite escalating threats, cybersecurity spending is struggling to keep pace. The IANS 2025 Security Budget Report indicates that average cybersecurity budgets grew by only 4% annually, even as the costs of security tools, employee training, and specialized talent acquisition continue to rise.

Contact centers face a dual challenge: balancing operational cost-cutting with the need to maintain high-level security, especially when migrating to CCaaS and cloud-based solutions.

AI: A Double-Edged Sword

While centers increasingly rely on AI to enhance CX through chatbots and call analytics, this expansion opens new avenues for risk.

Reports show that 87% of security executives confirmed their organizations were hit by AI-powered attacks last year.

Furthermore, “Shadow AI” poses a growing threat—employees may use unauthorized AI tools to speed up responses or improve performance, potentially leaking customer data or call recordings outside of corporate oversight.

Third-Party: The Weakest Link

Digital supply chains and external service providers have become a major vulnerability, especially for contact centers that outsource technical or operational services.

According to the Verizon Data Breach Investigations Report (DBIR) 2025, breaches linked to third parties doubled from 15% to 30% in just one year.

These attacks are particularly difficult to detect as they exploit the mutual trust between integrated systems.

The Necessity of an Integrated Security Strategy

Given these challenges, it is imperative for contact center operators to adopt a comprehensive cybersecurity strategy. This must go beyond technical tools to include:

• Continuous Employee Training: Building a human firewall against social engineering.
• System Consolidation: Reducing the attack surface by unifying workflows.
• AI-Driven Analytics: Analyzing voice and text data to detect suspicious behavior in real-time.
• Identity and Access Management (IAM): Strengthening authentication in a digital-first era.