Cybersecurity stocks rally as AI narrative shifts from threat to opportunity
Investor sentiment has reversed after a year of declines, with major vendors surging on the belief that agentic AI expands the cyber attack surface and drives demand for security solutions.
Investor interest in cybersecurity equities has revived sharply, with CrowdStrike, Palo Alto Networks, and SailPoint recording substantial monthly gains of 45 per cent, 40 per cent, and 41 per cent respectively. This resurgence marks a distinct reversal from the previous 12 months, during which the sector suffered declines driven by fears that artificial intelligence models, particularly those from Anthropic, would render traditional security businesses obsolete.
The shift in market sentiment appears rooted in a revised understanding of how enterprise AI impacts risk profiles. Analysts now argue that the adoption of AI systems expands the cyber attack surface, thereby increasing the necessity for robust security solutions. Wolfe Research recently upgraded CrowdStrike, citing Anthropic’s Mythos AI model as a catalyst for a new wave of demand for AI-driven cybersecurity tools.
Evercore ISI analyst Peter Levine noted that AI is already disrupting vulnerability discovery, red-team testing, and malware research. In a recent note, Levine suggested that vendors with early access to frontier models, such as Palo Alto Networks and CrowdStrike, are likely to benefit from faster remediation cycles and tighter integration between vulnerability discovery and production-level protection.
Data from McKinsey supports the bullish outlook, forecasting that global cybersecurity spending, currently estimated at $220 billion, will grow by 13 per cent annually. The consultancy’s researchers stated that enterprise AI has entered an “agentic phase,” where autonomous systems perform complex tasks at machine speed. They project that the share of fully implemented agentic AI solutions will more than double over the next 12 months.
As enterprises deploy these agents across infrastructure and identity environments, the potential for cyberattacks expands. McKinsey identified three primary challenges for providers: identity and access management architectures, detection, and the automation of security operations. The firm concluded that the value for cybersecurity vendors lies in addressing these agentic-related security problems, positioning firms with strong underlying businesses to grow further as threat landscapes evolve.
