Your Customers Are Already Gone

Fifty-one seconds.

That's the fastest recorded time between an attacker gaining access to your systems and moving laterally through your network. Not fifty-one minutes. Seconds. By the time your security team receives an alert, the breach is already spreading.

But here's what should keep you awake: that's just one of five fronts where AI is reshaping your competitive landscape faster than your planning cycles can respond.

I've spent years at the intersection of healthcare, insurance and technology. Built an AI-powered health insurance platform through FCA regulatory sandbox to full authorisation. Sat on both sides of the boardroom table. Reviewed 80+ M&A engagements. Invested in seven startups, one of which became a unicorn. Operated on patients as an NHS surgeon before I ever operated on a P&L.

What I'm seeing now is different from anything I've encountered.

The convergence of these threats isn't additive. It's multiplicative. And the window for response is measured in months, not years.

1. Your brand is becoming invisible

The insurance discovery journey is being rewritten in real time.

According to Menlo Ventures' June 2025 State of Consumer AI report, 61% of US adults have used AI tools in the past six months. Nearly one in five use them daily. Global AI users have reached 1.7 billion. This isn't early-adopter behaviour. It's mass market.

More concerning for insurers: LIMRA's 2025 Insurance Barometer Study found six in ten young adults would use AI to research life insurance. Attest's January 2025 Consumer AI Report showed 47% of consumers likely to use AI for purchase research, up from 41% the previous year.

The traffic implications are already visible. SparkToro's 2024 analysis found nearly 60% of Google searches now end without a click to any website. Industry studies from Amsive and Ahrefs documented click-through rates dropping 37-40% when AI Overviews appear. Gartner predicts traditional search volume will fall 25% by 2026.

What happens when your carefully optimised website never receives the visit?

Analysis from Wellows found major insurers like AXA showing 0% visibility in Google AI Overview, while competitors like Progressive recorded 65+ citations. The difference isn't marketing spend. It's structured, machine-readable policy data. Insurers lacking AI-crawlable content simply don't appear in recommendations.

Your SEO budget is optimising for a game that's ending.

2. Customers will buy without ever seeing your website

OpenAI launched Instant Checkout in late 2025. Over a million Shopify merchants. 700 million weekly ChatGPT users.

Amazon's "Buy for Me" feature, launched April 2025, allows purchasing from third-party websites directly within the Amazon Shopping app. The AI browses, compares and completes transactions autonomously.

McKinsey projects the agentic commerce market will reach $3-5 trillion globally by 2030. Gartner's November 2025 forecast: 90% of B2B purchases will occur via AI agents by 2028.

For insurers, the disruption pathway is clear. Instead of visiting five carrier websites, a consumer's AI agent queries fifty carriers via API, compares coverage-to-cost ratios and shortlists optimal options in seconds. The agents prioritise price and specifications over brand loyalty.

FNArena's analysis of the Australian insurance sector stated it plainly: when customers can delegate insurance purchasing to an AI agent that instantly compares hundreds of policies, brand loyalty becomes irrelevant.

The threat to brokers may be more acute. Why pay brokerage fees when an AI agent provides instant policy comparisons? Standardised products face immediate disruption. Complex commercial lines retain human advisory value. For now.

BCG's October 2025 report issued a direct warning: without swift intervention, companies risk being sidelined and reduced to mere background utilities in increasingly agent-controlled digital marketplaces.

The question isn't whether this will happen. It's whether you'll be accessible when the agents start shopping.

3. Your new competitors need a fraction of your workforce

Replit went from $10 million to $100 million ARR in 5.5 months.

Cursor confirmed $500 million ARR in June 2025. At its earlier $100 million milestone, the company had just twelve employees. Revenue per employee at that stage exceeded $8 million. The traditional SaaS benchmark is $200,000.

Lovable became the fastest software company to reach $100 million ARR in history. Eight months from launch. Forty-five full-time employees.

Web-Strategist analysis by Jeremiah Owyang found top AI startups average $3.48 million in revenue per employee versus $610,000 for traditional SaaS. A 5.7x efficiency advantage.

The rules have changed. These companies use AI before hiring humans. AI agents handle what once required entire departments. Seventy-four percent of top lean AI startups are already profitable.

For incumbent insurers, the implications are severe. AI-native entrants can serve customers at radically lower cost while moving faster. They're not digitising old processes. They're building new ones entirely.

BCG's October 2025 report on the AI value gap quantified the disparity: only 5% of companies capture significant AI value. Sixty percent generate no meaningful value despite adoption. The key finding: AI amplifies existing structures. If fragmented, AI adds fragmentation. If integrated, AI becomes a multiplier.

The uncomfortable question: would you build your organisation this way if you started today?

4. Attackers move faster than your response time

CrowdStrike's 2025 Global Threat Report documented the fastest eCrime breakout time at 51 seconds. Average: 48 minutes. Down from 62 minutes in 2023.

AI has transformed attacker capabilities. Voice phishing increased 442% between the first and second halves of 2024. Research from Harvard Kennedy School found AI-generated spear phishing achieved 54% click-through rates, matching human expert performance and vastly outperforming generic phishing templates at 12%.

Deepfake incidents increased 257% from 2023 to 2024. Human detection rate for video deepfakes: 24.5%. Three-quarters successfully fool observers.

The financial impact is substantial. Deloitte projects generative AI fraud losses growing from $12.3 billion in 2023 to $40 billion by 2027.

In February 2024, engineering firm Arup lost $25 million when a finance worker participated in a video call with the CFO and senior executives. All deepfakes. The worker authorised wire transfers during what appeared to be a legitimate multi-participant conference.

Mandiant's M-Trends 2025 report identified financial services as the top targeted sector at 17.4% of attacks. Swiss Re, citing Sumsub research, documented a 700% increase in deepfake incidents in fintech in 2023.

CrowdStrike's Adam Meyers summarised the threat evolution: adversaries exploit identity gaps, leverage social engineering and move across domains undetected, rendering legacy defences ineffective.

Your security playbook was written for a different enemy.

5. Your people aren't ready for what's required

McKinsey's 2025 State of AI survey found 88% of organisations now use AI in at least one business function. Generative AI adoption more than doubled from 33% in 2023 to 71% in 2024.

Yet only 6% of organisations report AI contributing more than 5% of EBIT.

The gap between deployment and value capture is the central challenge. And it starts in the boardroom.

Deloitte's Global Boardroom 2025 survey found 66% of board directors have limited to no knowledge of AI. As of 2024, only 39% of Fortune 100 companies had any board AI oversight. MIT research found organisations with AI-savvy boards outperform peers by 10.9 percentage points in ROE. Those without perform 3.8% below industry average.

Meanwhile, your workforce is already moving without you. Microsoft's 2024 Work Trend Index revealed 78% of AI users bringing their own tools to work. Cyberhaven found 73.8% using non-corporate ChatGPT accounts, with 27.4% of data entered being sensitive.

The World Economic Forum projects 39% of existing skills will be transformed or outdated by 2030. AI fluency demand grew 7x in two years.

But only 39% of AI-using employees have received training from their employer.

Harvard Professor Karim Lakhani's formulation captures the strategic reality: AI won't replace humans, but humans with AI will replace humans without AI.

Your competitors are training. Your employees are improvising. Your board is watching.

The window is closing

Five fronts. Five threats. One common thread: speed.

Your customers research faster. AI agents transact faster. AI-native competitors scale faster. Attackers breach faster. And your organisation adapts at planning-cycle speed.

The strategic question isn't whether to transform. It's whether transformation can happen fast enough to survive entrants unburdened by legacy operations.

I've watched health insurers discuss AI strategy for three years while AI-native competitors built products, reached scale and started taking market share. Stuck in beta while competitors ship. The comfort is temporary. The strategic consequences are not.

Gartner projects 33% of enterprise applications will feature agentic AI by 2028. Up from less than 1% in 2024. McKinsey's analysis suggests the gap between AI leaders and laggards is widening.

The board conversation needs to change. From "How do we adopt AI?" to "What would our business look like if we started today?"

And then: "How fast can we get there?"

Fifty-one seconds. That's how fast the world is moving.

Your move.