Artificial intelligence and cyber capabilities are expanding strategic grey zones where traditional distinctions between peace and war, lawful and unlawful conduct, and human and machine agency increasingly dissolve. This article examines how AI-enabled cyber power operates below formal thresholds, enabling persistent influence, disruption, and escalation without clear attribution or declaration. By integrating perspectives from cybersecurity, digital forensics, and AI governance, the analysis shows how automated systems compress decision timelines, fragment responsibility, and challenge existing legal and institutional frameworks. In these grey zones, power is exercised through optimisation, manipulation, and ambiguity rather than overt force, complicating accountability and response. The article argues that effective governance must move beyond compliance-based approaches toward governance architectures capable of operating under uncertainty. Embedding forensic traceability, decision oversight, and human–machine accountability into AI-assisted operations is essential to limit escalation and preserve strategic stability. Without such governance, grey zones risk becoming the dominant terrain of conflict in an increasingly automated international order.