Analysis

The market is underpricing the second-order effect: frontier AI models are not just a cybersecurity risk, they are a force multiplier for offensive and defensive cyber spend. That tends to benefit the large incumbents with distribution into regulated enterprises and government procurement, while squeezing smaller point-solution vendors whose products can be commoditized or bypassed by model-driven workflows. Over the next 6-18 months, the biggest winners are likely to be platforms that can bundle identity, endpoint, cloud, and data security into a single budget line rather than niche tools with narrow detection signatures. The immediate risk is not a collapse in internet security, but a widening gap between model capability and organizational readiness. That creates a near-term budget shock: boards will green-light higher spend on monitoring, access control, and red teaming, but the spend will be concentrated in a few categories and vendors. A more important medium-term catalyst is regulation; once governments move from concern to procurement standards, model providers will face compliance costs, liability, and export controls that can slow commercialization and shift bargaining power toward incumbents with policy teams and audit infrastructure. Contrarian view: the consensus may be overestimating the speed of disruption to the core internet stack and underestimating how much of the response is defensive and incremental. Most enterprises will not rip-and-replace infrastructure; they will add layers, raising total security spend before productivity gains fully show up. The sharper trade is not “AI bad for tech,” but “AI accelerates revenue for security and compliance vendors faster than it compresses software margins elsewhere.” Tail risk sits in a regulatory or geopolitical shock: if a major cyber incident is attributed to advanced model misuse, expect a rapid 1-2 quarter repricing in cloud, security, and AI infrastructure names as governments impose stricter controls. Conversely, if the first high-profile deployments prove manageable, the current fear premium could unwind quickly, favoring the most levered AI beneficiaries over pure-play security proxies.