An accidental leak earlier this month, of around 2,000 internal files due to a human error at AI-safety firm Anthropic, raised fresh security questions, The Guardian reported. This sent shockwaves through the cybersecurity sector and related ETFs, sparking doubts about the adequacy of the industry’s defenses against advanced threats.

For perspective, the Global X Cybersecurity ETF (NASDAQ:BUG) saw a single-day plunge of 4.5% last week, marking a significant decline in its valuation as investors realized that conventional cybersecurity measures may not suffice in the age of artificial intelligence.

In fact, last week, during a closed-door meeting, U.S. officials reportedly cautioned major banks about a powerful new AI system that could expose critical cybersecurity vulnerabilities.

However, there appears to be a more fundamental problem at play. According to a survey conducted by the Trusted Computing Group, 91% of companies have yet to formulate a strategy to ensure quantum-resistant encryption. Meanwhile, the 2026 Thales Data Threat Report reveals that 61% of firms view “harvest-now-decrypt-later” attacks as their primary threat, despite the fact that 47% of sensitive data stored on clouds is currently encrypted, representing a decline from 51% last year.

AI Is Forcing A Rethink Of Cyber Defense Models

Activity within the industry highlights a transition toward AI-native and automated security. SentinelOne Inc. (NYSE:S) has broadened its collaboration with Alphabet Inc. (NASDAQ:GOOGL) to develop autonomous threat detection using cloud-based technologies, while Elastic N.V. (NYSE:ESTC) has achieved FedRAMP High accreditation, enabling it to serve sensitive government loads.

Additionally, Rapid7 Inc. (NASDAQ:RPD) is striving to move towards machine-level investigation using its recent acquisition of an agentic AI solution. Furthermore, Broadcom Inc. (NASDAQ:AVGO) is incorporating endpoints and cloud protection solutions to create a comprehensive security solution using its latest Symantec CBX platform.

Concurrently, new entrants in the post-quantum cryptography domain seek to fill a major gap. Cryptographic platforms that can detect and enhance weak encryption platforms have gained significant attention, as enterprises are preparing for a potential future where quantum computing could jeopardize current encryption standards: a market that remains relatively unexplored in the public sphere and ETF space.

Cybersecurity ETFs: Misaligned With The Next Threat Cycle?

The selloff in BUG represents another example of the expanding mismatch between the ETF portfolio strategy and the developing security environment. In addition to BUG, other ETFs offering extensive coverage in endpoints, networks, and clouds include the First Trust Nasdaq Cybersecurity ETF (NASDAQ:CIBR) and the Amplify Cybersecurity ETF (NYSE:HACK). All three funds are up around 4% on Monday, possibly due to the new challenges and opportunities that have emerged in the cybersecurity space, creating room for further innovations and advancements by the firms to which the ETFs are exposed.

But the portfolios of these ETFs continue to reflect the conventional cybersecurity framework, lacking investments in quantum-safe encryption or self-sufficient defense mechanisms.

This trend might intensify further in the future, when institutional investors shift toward organizations that are engaged in the convergence of AI and cryptography. Although market volatility will remain in the coming months, the longer-term story points to a reweighting of cybersecurity exposure, with future gains likely concentrated in firms building defenses for the AI and quantum era rather than the last generation of threats.

Photo: Shutterstock