HP today shared its 2026 Security Predictions, outlining how cybercriminals are expected to evolve their tactics in response to stronger authentication, hybrid work, AI advancements and the looming impact of quantum computing. Insights from HP’s global security leaders point to a future where identity theft, physical device compromise and AI-driven attacks become more prevalent — pushing organizations to rethink endpoint and data protection strategies.
Cookie and Token Theft to Rise as MFA Becomes the Norm
As multi-factor authentication becomes widespread, attackers are shifting away from password theft toward stealing session cookies and authentication tokens. According to Ian Pratt, HP Global Head of Personal Systems Security, this enables threat actors to gain immediate access and implant backdoors before stolen credentials expire, often targeting high-privilege users such as system administrators. With defenses against cookie theft still immature, HP warns enterprises will need stronger isolation and application-level security controls to prevent large-scale breaches.
Cybercriminals to Use AI Agents for Scalable Attacks
Alex Holland, Principal Threat Researcher at HP Security Lab, predicts organized crime groups will increasingly deploy AI agents to automate reconnaissance, victim profiling and vulnerability discovery. As AI reduces the skills and resources required to launch attacks, campaigns will scale faster and become harder to detect. HP emphasizes that containment, isolation and rapid remediation will be critical as no detection system will catch every AI-assisted threat.
Physical Device Attacks Become Easier and More Common
With employees working across cafés, hotels and shared spaces, Boris Balacheff, Chief Technologist for Security Research at HP, warns that physical attacks on devices will grow cheaper and more accessible. Attackers can tamper with unattended devices to steal data, gain network access or permanently disable hardware. As a result, auditors and enterprises will place greater emphasis on hardware-level security, integrity protection and self-healing capabilities.
IoT, Edge and Print Security Finally Gain Attention
Following high-profile attacks on connected devices, organizations are expected to prioritize security at the network edge. Steve Inch, Global Senior Print Security Strategist at HP, notes that printers remain one of the most overlooked endpoints, often lacking basic visibility, firmware management and access controls. In 2026, enterprises and governments will increasingly demand continuous monitoring and automated compliance across device fleets, including printers.
Quantum Resistance Becomes a Procurement Requirement
With new NIST standards and looming cryptographic deprecation timelines, Thalia Laing, Principal Cryptographer at HP Security Lab, expects quantum resistance to influence hardware purchasing decisions from 2026 onwards. As PCs and printers often remain in use for many years, organizations will need to adopt quantum-resistant cryptography now to protect long-life data and infrastructure before quantum threats become reality.
Security Shifts Toward Identity, Provenance and Persistent Control
According to Peter Blanchard, Document Workflow Security Strategy Principal at HP, enterprise security will move away from fragmented identity systems toward unified, data-centric models. Identity, policy and governance will increasingly travel with data throughout its lifecycle, enabling continuous control even beyond organizational boundaries. This shift will be essential in building trust and transparency in an AI-driven future of work.
As threats grow more automated, physical and persistent, HP’s 2026 predictions highlight the need for security strategies that combine hardware-level protection, intelligent isolation, and long-term resilience — ensuring organizations can securely support the evolving Future of Work.