The Caribbean is under Attack from AI
Ransomware in Curaçao. Credential theft surging 160% globally. Deepfakes impersonating executives. The threat is not coming. It is here.
AI-powered cyberattacks are rising sharply across the Caribbean, with criminals using artificial intelligence to create convincing phishing emails, clone executive voices, and deploy ransomware at speeds that human-led teams cannot match. The IDB and OAS confirmed in their 2025 Cybersecurity Report that the Caribbean's gaps in resources and trained personnel leave the region disproportionately exposed to this new wave of AI-driven threats.
This Is Not a Future Problem. It Already Happened Here.
In July 2025, Curaçao's Tax and Customs Administration was hit by ransomware. Vehicle tax processing stopped. Phone support went silent. Customer services shut down. Recovery took nearly two weeks, with emergency technical support brought in from the Netherlands. This was not a sophisticated nation-state attack. It was a criminal group using widely available tools.
That same period, a second ransomware incident struck Aruba's government systems. Two Dutch Caribbean territories, within weeks of each other. The attacks were not accidents. They were probes against targets the attackers judged to be accessible.
Meanwhile, across the wider region, thousands of employees at Caribbean banks, hotels, ministries, and universities were receiving phishing emails that no longer read like bad English with obvious typos. They were fluent, contextually accurate, and addressed by name. AI wrote them in seconds.
The 2025 IDB-OAS Cybersecurity Report, developed with Oxford's Global Cyber Security Capacity Centre, assessed 30 countries across the region. It found that persistent gaps in resources, workforce development, and cross-sector coordination continue to leave the region vulnerable. This was not a minor finding. It was a warning.
What AI-Powered Cybercrime Actually Looks Like
Most people imagine a hacker as someone sitting in a dark room writing code. That picture is outdated. Today's criminal uses AI tools the same way a marketing team does: to produce content faster, at scale, and with higher quality. The difference is that the content is designed to steal, defraud, or destroy.
Here are the four AI-powered attacks that Caribbean organisations are most likely to face right now.
AI Phishing
AI writes personalised scam emails in bulk, using your name, company, and public social media data to seem completely legitimate.
Deepfake Fraud
AI clones the voice or video image of a CEO, minister, or colleague to instruct staff to transfer money or share passwords.
AI Ransomware
AI-driven ransomware adapts in real time to evade antivirus software, then encrypts your files and demands payment.
Credential Theft
AI scans millions of leaked passwords and automatically tests combinations across banking apps, email, and cloud services.
Data Harvesting
The attacker feeds AI publicly available information: your LinkedIn profile, company website, news articles, and your email from a previous breach.
AI-Generated Email
An AI language model writes a personalised email in seconds. It sounds like a real supplier, bank, or government agency, and uses your name and accurate context.
Mass Distribution
The same AI system sends thousands of customised emails simultaneously. One attacker can send 10,000 personalised scam messages in the time it used to take to write five.
One Click Is Enough
The recipient clicks a link, enters their password, or downloads a file. The attacker now has access to their account or has installed ransomware on their device.
Silent Spread
Stolen credentials remain active for an average of 94 days before detection. In that time, the attacker moves quietly through the organisation's systems.
Sources: IBM Security, Check Point Research, MITRE ATT&CK Framework. Analysis: Caribbean AI Newsletter.
Why the Caribbean Is Being Targeted
Cybercriminals do not target countries they find culturally interesting. They target countries where the expected return outweighs the expected risk. Right now, the Caribbean offers both: real economic activity with digital systems, and relatively limited capacity to investigate, prosecute, or attribute attacks.
1. Tourism Creates High-Value, High-Volume Data
Caribbean hotels, airlines, tour operators, and ports process millions of credit card transactions every year. A single hotel chain in Montego Bay or Bridgetown can hold the financial data of hundreds of thousands of international visitors. That data has real market value on criminal networks. It is not stored in a hotel vault. It lives on digital systems that, in many cases, run on outdated software with limited security monitoring.
2. Small Governments, Large Administrative Systems
Caribbean governments manage national registries, passport databases, tax records, and social services on lean IT teams with modest budgets. Some systems date back to the early 2000s. When ransomware hits, as it did in Curaçao in 2025, there is often no rapid-response playbook and no dedicated incident response team. Recovery depends on external expertise and goodwill from metropolitan partners.
3. The Regulatory Gap Gives Criminals Time
Jamaica enacted its Data Protection Act in 2020. Trinidad and Tobago has the Computer Misuse Act. Barbados passed its Data Protection Act in 2019. But laws without enforcement infrastructure are statements, not shields. The 2025 IDB-OAS report found that legal and regulatory frameworks across the region remain underdeveloped compared to the speed of the threat.
4. The Skills Gap Is Real and Measurable
A 2025 Darktrace survey of 1,500 cybersecurity professionals found that 78% of chief information security officers now confirm AI-powered threats are having a significant impact on their organisations. Yet only 11% are prioritising hiring additional cybersecurity staff. In the Caribbean, where cybersecurity graduates are scarce and often leave for North American markets, this deficit is sharper still.
Mastercard's executive vice president for cybersecurity solutions described the core issue clearly: "AI makes these things repeatable and automated." What previously required a team of ten criminals with specialist skills can now be done by one person with inexpensive AI tools. The Caribbean cannot rely on being too small to notice. Scale no longer protects you.
Real Incidents from the Region
Curaçao's Tax and Customs Administration was struck by ransomware in July 2025. Vehicle tax processing stopped. Phone support and customer assistance went offline. Full recovery took nearly two weeks and required technical specialists from the Netherlands. No ransom amount was publicly disclosed.
Within the same weeks as the Curaçao incident, Aruba's government systems were also targeted. Two small island territories hit in rapid succession signals organised targeting, not random opportunism. The incidents prompted regional security discussions about coordinated Caribbean cyber defence.
Check Point Software reported a 160% surge in credential theft globally in 2025, with over 14,000 incidents in a single month. Most compromised credentials remained undetected for an average of 94 days. Every Caribbean business using these platforms is exposed. Most have not enabled the basic protections that would stop the majority of these attacks.
Risk levels based on IDB-OAS 2025 Cybersecurity Report findings and sector exposure analysis.
What Caribbean Organisations Can Do Right Now
The good news is that most successful cyberattacks in the Caribbean exploit the same small set of preventable weaknesses. AI has made attacks faster and more convincing, but it has not changed the entry points. A criminal still needs a door left open. Most of the time, Caribbean organisations leave several.
IBM research found that organisations using AI-assisted defence tools saved an average of US$2.2 million per breach compared to those that do not. Many of these tools are available today through cloud providers at costs accessible to Caribbean organisations. The barrier is not money alone. It is awareness, priority, and decision.
| Action | What It Stops | Level |
|---|---|---|
| Enable Multi-Factor Authentication on every account | Blocks 99% of automated credential attacks even if a password is stolen | Easy |
| Train staff to identify AI-generated phishing | Stops the human entry point that malware relies on | Easy |
| Back up data regularly, off-site or to the cloud | Ensures ransomware cannot destroy your organisation permanently | Easy |
| Update software and operating systems immediately | Closes unpatched vulnerabilities that AI-driven scanners find in seconds | Easy |
| Establish a voice-confirmation protocol for financial transfers | Defeats deepfake voice and email CEO fraud | Easy |
| Conduct a basic cybersecurity audit | Identifies your vulnerabilities before a criminal does | Medium |
| Deploy AI-based threat detection (e.g. Microsoft Defender, Darktrace) | Fights AI attacks with AI-speed monitoring and response | Medium |
| Develop an incident response plan | Reduces chaos and cost when an attack succeeds | Advanced |
The IDB and OAS report points to a clear lesson from the region's more resilient countries: integrate cybersecurity into the national development agenda, not just the ICT ministry's work plan. Countries that treat cybersecurity as a whole-of-government priority, with cabinet-level visibility and public-private coordination, recover faster and face fewer successful attacks.
AI Cybersecurity: How Ready Is Your Organisation?
Five quick questions. No score is too low to start from.
Frequently Asked Questions
The Caribbean has never lacked intelligence. It has consistently lacked systems that allow that intelligence to scale. Cybersecurity is where that gap becomes most dangerous, because the criminals building systems to threaten us have no such constraints. They are already scaled. The question is whether the Caribbean will be ready before the next Curaçao, or only after it.Caribbean AI Newsletter — May 2026
About Caribbean AI
Caribbean AI is the official directory of artificial intelligence companies, labs, and innovators in the Caribbean. We exist to connect startups, enterprises, and researchers driving the region's AI growth.
We track who is building AI in the Caribbean, what is being built, and what the region needs to compete. From Jamaica to Curaçao, from Guyana to the Bahamas, we document the people, organisations, and ideas shaping the Caribbean's AI future.