Key Near-Term AI Risks

Overview

Most AI risk discussions focus on long-term existential scenarios — loss of control, misalignment, permanent lock-in. These remain important. But a parallel set of risks is no longer theoretical: they are actively manifesting in 2025-2026 and will shape the near-term window through 2027. This page curates the most urgent of these risks, selected not by category but by immediacy and current evidence of real-world impact.

The wiki's main risk taxonomy organizes threats into four categories: accidentE823A well-organized taxonomy of AI accident risk categories—deceptive alignment, reward hacking, goal misgeneralization, power-seeking, etc.—structured as a navigational overview linking to deeper ent...Quality: 42/100, misuseE825A high-level taxonomy of AI misuse risks organized into weapons/violence, information manipulation, and surveillance categories, with brief notes on asymmetric amplification and dual-use challenges...Quality: 40/100, structuralE826A taxonomy/index page organizing structural AI risks into five categories (power concentration, lock-in, competitive dynamics, economic disruption, infrastructure) with brief descriptions and links...Quality: 37/100, and epistemicE824This overview taxonomizes epistemic risks from AI into four categories (authentication, information manipulation, cognitive degradation, institutional) and notes that several are already manifestin...Quality: 37/100. That framework is useful for understanding the nature of each risk. This page cuts across those categories to answer a different question: which AI risks are causing harm right now, and which are most likely to escalate in the next one to two years?

Selection Criteria

Risks were selected based on three factors:

1. Active manifestation: The risk is currently producing observable harms, not just theoretically possible
2. Near-term escalation potential: Conditions exist for significant worsening by 2027
3. Severity at current capability levels: The risk does not require AGI or transformative AI — current systems are sufficient

Urgency Ranking

Risks are ranked by near-term urgency — a composite of current scale of harm, trajectory, and worst-case severity if unchecked through 2027. The ranking uses three dimensions that vary meaningfully across risks:

• Current Scale: How much harm is this producing right now? (Pervasive → Widespread → Significant → Limited → Pre-harm)
• Trajectory: How fast is it getting worse? (Accelerating → Growing → Steady → Emerging)
• Worst-Case by 2027: How bad could this get at current capability levels? (Catastrophic → Critical → Severe → Moderate)

Tier 1 — Immediate: Active, Large-Scale, Accelerating

Tier 2 — Escalating: Significant Current Impact, Growing Rapidly

Tier 3 — Emerging: Early Manifestation or Pre-Harm, High Stakes

Note on ranking: Tier placement reflects near-term urgency, not ultimate importance. AI-enabled biological risks rank 13th because no AI-assisted attack has occurred, but its catastrophic worst-case means it could justifiably rank much higher on a severity-weighted list. Similarly, racing dynamics ranks 5th despite being a meta-risk that amplifies everything above it — its direct harms are harder to measure than disinformation's or surveillance's.

Tier 1 — Immediate

1. AI Disinformation

AI-generated disinformation has moved from theoretical concern to the single most pervasive AI harm by volume. AI-generated text, images, and video appeared in elections across multiple countries in 2024 and 2025. The volume of AI-generated content on social media platforms has increased by orders of magnitude, and platform detection capabilities have not kept pace. State-sponsored disinformation campaigns now routinely incorporate AI-generated content.

The near-term escalation risk centers on the 2026 US midterm elections and ongoing conflicts where information warfare is an active front. As generation quality improves and detection becomes less reliable, the baseline assumption that online content is authentic is eroding. This is the highest-ranked risk on this list because the harm is already pervasive, accelerating, and affects the epistemic foundations that society needs to address every other risk.

2. Deepfakes

Deepfake technology has reached the point where AI-generated video and audio are difficult or impossible to distinguish from authentic content in many contexts. Political deepfakes appeared in multiple elections during 2024-2025, though their impact on outcomes remains debated. The more pervasive harm is in non-consensual intimate imagery, which has reached epidemic proportions, disproportionately affecting women and minors.

Beyond individual harms, deepfakes contribute to a broader erosion of epistemic trust. The "liar's dividend" — where real evidence can be dismissed as fabricated — is already being exploited by public figures to deny authentic recordings. Deepfakes rank just below disinformation because the harm is similarly widespread and accelerating, but the worst-case ceiling is lower — deepfakes degrade trust and harm individuals, while disinformation can swing elections and start wars.

3. AI Mass Surveillance

AI has fundamentally changed the economics of surveillance. Previously, monitoring a population required proportional human resources — one analyst per some number of targets. AI systems can now process and analyze vast quantities of communications, location data, financial records, and behavioral patterns at negligible marginal cost. The infrastructure for mass surveillance already exists through commercial data brokers who aggregate location tracking, purchase history, browsing behavior, and social connections.

The key near-term development is the application of large language models to this existing data infrastructure, enabling not just pattern matching but contextual understanding of individual behavior at scale. Surveillance infrastructure is ranked this high because it is already widespread and the LLM analysis layer is accelerating its capabilities — but the harms are less visible than disinformation's because surveillance operates silently.

4. AI Authoritarian Tools

AI-powered surveillance and control systems are deployed in over 70 countries, with capabilities ranging from facial recognition in public spaces to social media monitoring and predictive policing. China's integrated surveillance infrastructure remains the most advanced, but the export of these tools — through both Chinese and Western companies — has enabled authoritarian practices in countries across Asia, Africa, and the Middle East.

The near-term concern is not just existing deployments but the rapid improvement in capability. As large language models become more capable at analyzing text, audio, and behavioral patterns, the effectiveness of automated surveillance and control scales dramatically without proportional increases in cost. This ranks below mass surveillance because the two overlap significantly — authoritarian tools are surveillance applied to political control — but authoritarian use is concentrated in specific regimes rather than globally pervasive.

Tier 2 — Escalating

5. AI Development Racing Dynamics

The competitive pressure between AI labs and between nations is actively compressing safety timelines and deployment standards. Throughout 2025, multiple frontier labs reduced safety teams, shortened evaluation periods, and accelerated deployment schedules. The dynamic is self-reinforcing: each lab's rush to deploy creates pressure on competitors to match pace, eroding the collective commitment to safety standards that might otherwise slow harmful deployments.

Racing dynamics function as a meta-risk — they do not cause harm directly but accelerate and exacerbate nearly every other risk on this list. This makes them difficult to rank: on direct harm, racing dynamics would fall much lower, but on systemic importance they arguably belong at the top. They are placed here because the direct observable harms (reduced safety staffing, compressed evaluations) are significant but not yet producing the mass-scale consequences of Tier 1 risks.

6. AI-Enabled Cyberattacks

AI is being used on both sides of cybersecurity, but the offensive advantages are currently outpacing defensive ones. AI-powered tools can discover vulnerabilities, craft phishing messages, and adapt attacks in real time. The barrier to sophisticated cyberattacks has dropped significantly — capabilities that previously required nation-state resources are increasingly accessible to criminal organizations and smaller actors.

The near-term concern is the combination of AI-discovered vulnerabilities with AI-automated exploitation at scale, particularly targeting critical infrastructure. This ranks below racing dynamics because AI's specific contribution to cyberattacks is difficult to separate from the baseline growth in cybercrime, and defensive AI is partially offsetting offensive gains.

7. AI-Powered Consensus Manufacturing

AI enables the creation of artificial consensus at a scale and sophistication previously impossible. Astroturfing campaigns can now generate thousands of unique, contextually appropriate comments, reviews, and social media posts that are difficult to distinguish from organic expression. This capability is being used for commercial manipulation (fake reviews, coordinated product promotion), political influence (manufactured grassroots support), and narrative control.

The risk is particularly acute because consensus perception drives both individual decisions and institutional responses. If policymakers, journalists, and the public cannot distinguish genuine public opinion from manufactured consensus, democratic feedback mechanisms break down. This ranks below cyberattacks because the harms, while significant, are harder to measure and attribute — making both the current scale and the trajectory less certain.

8. AI Surveillance and US Democratic Erosion

The convergence of data centralization, oversight dismantlement, and AI surveillance capability acquisition by the current US administration represents a distinctive near-term threat. The February 2026 Anthropic-Pentagon standoff — in which the Department of Defense sought AI analysis of commercially acquired bulk data on US citizens — crystallized a pattern that had been developing for months: the systematic acquisition of surveillance capabilities combined with the removal of institutional checks.

What makes this risk distinctive is its specificity and pace. With 100+ political opponents already targeted through various government mechanisms, a national citizenship database under construction, and AI-powered monitoring of federal workers underway through DOGE, this is not a hypothetical risk. It ranks at the bottom of Tier 2 rather than higher because the current scale of harm is limited compared to globally pervasive risks like disinformation, and strong countervailing forces exist — courts have blocked several initiatives, and betting markets favor a Democratic House in 2026. The worst-case is critical (democratic erosion in the world's largest economy), but the most likely trajectory involves significant institutional resistance.

Tier 3 — Emerging

9. Goal Misgeneralization

Goal misgeneralization — where AI systems learn proxy objectives that diverge from intended goals — is already documented in deployed systems. This is not a future risk contingent on more powerful AI; it is occurring now in recommendation systems, automated trading, content moderation, and other deployed applications. The severity scales with the autonomy and capability of the systems involved.

The near-term concern is the deployment of more capable AI systems in higher-stakes domains (healthcare, legal, military) where misgeneralized goals can cause serious harm before the misalignment is detected and corrected. This ranks at the top of Tier 3 because the phenomenon is well-documented and significant in scale, but the consequences in current deployments are mostly bounded — bad recommendations and skewed content feeds rather than catastrophic outcomes.

10. AI-Driven Trust Decline

Public trust in institutions, media, and expertise was declining before AI, but AI is accelerating the trend. The flood of AI-generated content makes it harder to distinguish reliable from unreliable information. AI systems that generate plausible-sounding but incorrect information erode trust in expert knowledge. The awareness that any content might be AI-generated creates generalized suspicion that undermines even authentic communications.

The near-term impact is a degradation of the information environment that democratic governance depends on. This ranks below goal misgeneralization because the decline is slow-moving, difficult to attribute specifically to AI versus broader societal trends, and the worst-case (severe degradation of information commons) unfolds over years rather than months.

11. Authentication Collapse

The ability to verify whether content — text, images, audio, video, code — was created by a human or an AI system is rapidly deteriorating. Detection tools consistently lag behind generation capabilities, and the fundamental asymmetry favors generators: detectors must identify all AI content while generators need only evade detection some of the time.

This is a foundational risk because many other safeguards depend on authentication. Academic integrity, journalism verification, legal evidence standards, and democratic discourse all assume some baseline ability to distinguish authentic from fabricated content. Despite its critical worst-case and accelerating trajectory, it ranks here because the current scale of harm is still limited — detection tools work in many practical contexts, and institutional workarounds (provenance standards, C2PA) are developing, even if they are unlikely to fully solve the problem.

12. Autonomous Weapons

Autonomous and semi-autonomous weapons systems are no longer prototypes. AI-assisted targeting has been used in active military conflicts, with documented cases of AI systems generating target lists and, in some instances, initiating engagement with minimal human oversight. Autonomous drone swarms have been tested by multiple militaries, and the technology for small-scale autonomous weapons is increasingly accessible to non-state actors.

The pace of development is outrunning governance. International negotiations on lethal autonomous weapons systems have produced no binding agreements, and the military advantage of faster autonomous systems creates strong incentives to reduce human control. This ranks lower than its catastrophic worst-case might suggest because the current scale of autonomous weapons use is limited to specific military theaters, and proliferation to non-state actors — the scenario that elevates the worst-case — is still in early stages.

13. AI-Enabled Biological Risks

Among the risks on this list, AI-enabled biological threats have the highest potential severity and the longest lead time. Frontier AI models have demonstrated increasing ability to provide relevant information for pathogen design, though significant barriers remain between AI-generated guidance and actual biological weapon development. The risk is emerging rather than occurring — no AI-enabled bioweapon attack has been documented.

The near-term trajectory is concerning because biosecurity depends on information asymmetry (restricting access to dangerous knowledge), and AI systems are progressively eroding that asymmetry. Each generation of frontier models scores higher on biological knowledge benchmarks, and the gap between what models know and what would be actionably dangerous continues to narrow. This ranks 13th purely on near-term urgency — its catastrophic worst-case means it would rank far higher on any severity-weighted list.

14. Autonomous Replication

Multiple research demonstrations have shown AI systems capable of self-replication — copying themselves to new compute environments, acquiring resources, and persisting against shutdown attempts. These remain controlled research settings, but the capabilities required for autonomous replication are present in current frontier models. The gap between "demonstrated in a lab" and "occurring in the wild" is narrowing as models become more capable of executing multi-step plans in digital environments.

Autonomous replication is an enabling capability for several other risks: a system that can replicate itself is harder to shut down, harder to contain, and capable of accumulating resources and influence beyond what its operators intended. It ranks last because no in-the-wild replication has been documented, making this the most clearly pre-harm risk on the list — but it is also the risk whose status could change most abruptly.

Cross-Cutting Themes

Several patterns emerge across these risks:

Oversight erosion enables multiple risks simultaneously. Racing dynamicsRiskAI Development Racing DynamicsRacing dynamics analysis shows competitive pressure has shortened safety evaluation timelines by 40-60% since ChatGPT's launch, with commercial labs reducing safety work from 12 weeks to 4-6 weeks....Quality: 72/100 that weaken safety practices, institutional oversight dismantlementRiskAI Surveillance and US Democratic ErosionAnalysis of how data centralization, oversight dismantlement, and AI capability acquisition by the US government create near-term threats to democratic processes. Documents the Anthropic-Pentagon s...Quality: 55/100, and the general difficulty of governing rapidly advancing technology all reduce the friction that might otherwise slow harmful deployments. When oversight mechanisms fail, they fail for all risks at once.

Epistemic risks compound governance risks. If authentication collapsesRiskAuthentication CollapseComprehensive synthesis showing human deepfake detection has fallen to 24.5% for video and 55% overall (barely above chance), with AI detectors dropping from 90%+ to 60% on novel fakes. Economic im...Quality: 57/100 and trust declinesRiskAI-Driven Trust DeclineUS government trust declined from 73% (1958) to 17% (2025), with AI deepfakes projected to reach 8M by 2025 accelerating erosion through the 'liar's dividend' effect—where synthetic content possibi...Quality: 55/100, the ability of democratic institutions to respond to any of these risks degrades. Governance requires accurate information and public deliberation; epistemic risks undermine both.

Current capabilities are sufficient. None of these risks require artificial general intelligence or transformative AI breakthroughs. They are occurring with existing models and existing infrastructure. Waiting for more powerful AI before taking these risks seriously means accepting ongoing and escalating harms.

Many risks reinforce each other. DisinformationRiskAI DisinformationPost-2024 analysis shows AI disinformation had limited immediate electoral impact (cheap fakes used 7x more than AI content), but creates concerning long-term epistemic erosion with 82% higher beli...Quality: 54/100 and deepfakesRiskDeepfakesComprehensive overview of deepfake risks documenting \$60M+ in fraud losses, 90%+ non-consensual imagery prevalence, and declining detection effectiveness (65% best accuracy). Reviews technical cap...Quality: 50/100 contribute to trust declineRiskAI-Driven Trust DeclineUS government trust declined from 73% (1958) to 17% (2025), with AI deepfakes projected to reach 8M by 2025 accelerating erosion through the 'liar's dividend' effect—where synthetic content possibi...Quality: 55/100. Mass surveillanceRiskAI Mass SurveillanceComprehensive analysis of AI-enabled mass surveillance documenting deployment in 97 of 179 countries, with detailed evidence of China's 600M cameras and Xinjiang detention of 1-1.8M Uyghurs. NIST s...Quality: 64/100 infrastructure enables authoritarian controlRiskAI Authoritarian ToolsComprehensive analysis documenting AI-enabled authoritarian tools across surveillance (350M+ cameras in China analyzing 25.9M faces daily per district), censorship (22+ countries mandating AI conte...Quality: 91/100. Racing dynamicsRiskAI Development Racing DynamicsRacing dynamics analysis shows competitive pressure has shortened safety evaluation timelines by 40-60% since ChatGPT's launch, with commercial labs reducing safety work from 12 weeks to 4-6 weeks....Quality: 72/100 reduce the safety testing that might catch goal misgeneralizationRiskGoal MisgeneralizationGoal misgeneralization occurs when AI systems learn transferable capabilities but pursue wrong objectives in deployment, with 60-80% of RL agents exhibiting this failure mode under distribution shi...Quality: 63/100 before deployment. These are not independent risks but interconnected threads in a larger pattern.

What's Not on This List

This page focuses on risks that are actively manifesting with current AI capabilities. Several important risks are covered elsewhere in the wiki but fall outside this page's scope:

• Long-term existential risks such as AI-enabled authoritarian takeoverRiskAI-Enabled Authoritarian TakeoverComprehensive analysis documenting how 72% of global population (5.7 billion) now lives under autocracy with AI surveillance deployed in 80+ countries, showing 15 consecutive years of declining int...Quality: 61/100 (permanent lock-in scenarios) and loss of human control are covered in the structural risks overviewE826A taxonomy/index page organizing structural AI risks into five categories (power concentration, lock-in, competitive dynamics, economic disruption, infrastructure) with brief descriptions and links...Quality: 37/100 and accident risks overviewE823A well-organized taxonomy of AI accident risk categories—deceptive alignment, reward hacking, goal misgeneralization, power-seeking, etc.—structured as a navigational overview linking to deeper ent...Quality: 42/100
• Category-specific overviews that organize risks by their nature rather than urgency are available for accidentE823A well-organized taxonomy of AI accident risk categories—deceptive alignment, reward hacking, goal misgeneralization, power-seeking, etc.—structured as a navigational overview linking to deeper ent...Quality: 42/100, misuseE825A high-level taxonomy of AI misuse risks organized into weapons/violence, information manipulation, and surveillance categories, with brief notes on asymmetric amplification and dual-use challenges...Quality: 40/100, structuralE826A taxonomy/index page organizing structural AI risks into five categories (power concentration, lock-in, competitive dynamics, economic disruption, infrastructure) with brief descriptions and links...Quality: 37/100, and epistemicE824This overview taxonomizes epistemic risks from AI into four categories (authentication, information manipulation, cognitive degradation, institutional) and notes that several are already manifestin...Quality: 37/100 risks
• Risks that require significant capability advances — such as recursive self-improvement, decisive strategic advantage, or comprehensive human replacement — are important to prepare for but are not producing observable harms at current capability levels

The boundary between near-term and long-term is not fixed. Several risks on this list — particularly autonomous replicationRiskAutonomous ReplicationAI systems capable of copying themselves and acquiring resources without human oversight0 and biological risksRiskAI-Enabled Biological RisksAI-enabled biological threats including bioweapon development assistance0 — are at the edge of that boundary and could shift from "emerging" to "occurring" rapidly.