Applying the Cyber Security Lessons of 2024 to Proactively Manage Threats in 2025

In 2024, cyber-attacks increased in sophistication, frequency and profile, with threat actors widening their scope of targets to new industries. With public infrastructure like hospitals and transportation becoming more commonly targeted, cybercrime went from being just a concern of security teams to having an impact on everyday life.

Additionally, new technologies were adopted in cyber security by defenders and attackers alike, fuelling the ever-present arms race between them. As we transition into a new year, one thing remains the same – the cyber security landscape continues to evolve in complexity at breakneck speeds. Below are four trends we observed in 2024 that we expect to continue in 2025.

1. The Use of AI and Deepfakes is on the Rise

Artificial intelligence (AI) has become a favourite tool in the cybercriminal toolbox, as it allows smaller teams of threat actors to carry out increasingly complex and sophisticated attacks at scale. Technology has been increasingly leveraged by cybercriminals for social engineering such as phishing attacks, allowing for the creation of more sophisticated and believable content. AI can also be used to create automated malware much more quickly and easily than before.

The ease of access to AI has also led to an increased use of deepfakes in low-level scams to make them more believable. Deepfakes have evolved from a niche technology to a formidable tool with immense potential, and one that should not be underestimated.

With advancements in technology and sophistication, deepfakes are much more believable, and can revolutionize video content, as it will be hard to tell what a true representation is, and what was made by AI.

Today, deepfakes can almost flawlessly mimic both voices and visuals, creating hyper-realistic simulations that blur the line between what’s real and not. The improvement in this capability has increased enough to fool even advanced security systems, let alone employees. As deepfakes and synthetic identities rise, so will attacks targeting organisations, driving the need for new identity verification protocols and anti-fraud technologies.

2. The Cyber Skills Gap Continues to Widen

Another issue that has been a topic of discussion in 2024, and even further back, is the cyber security skills gap. The demand for skilled cyber security professionals already outstrips supply, but if this gap grows further, there could be a critical shortfall in the coming years. Organisations could potentially respond by doubling down on automation and AI to fill gaps in threat monitoring and response. AI and automation can help find the most pressing issues or help with routine tasks. However, they need to be backed by human-led expertise to ensure they are properly trained and lack biases.

Another option to help the cyber skills gap is organisations relying on managed security service providers. For many enterprises it may make sense to hire a trusted vendor instead of staffing up their own Security Operations Centre (SOC). These vendors by working across organisations have economies of scale to keep costs down, plus greater insight into threat trends.

3. The Effectiveness of Ransomware is Decreasing

One very surprising yet positive trend in 2024, was the decrease in the effectiveness of ransomware. This shift reflects organisations adopting a more proactive, defensive stance to secure both their own operations and third-party supply chains.

Supply chains have been, and continue to be, one of the biggest vectors for ransomware attacks to date. This decrease could also be attributed to overall awareness, and improved incident response programs. Some other contributing factors could be improved network segmentation, controlling user privileges, and general improvements in data backup strategies. PRIVATE

A key way in which companies can help fight ransomware is through the thorough vetting of third parties. Organisations that only work with supplies that have robust cyber security practices and programs are much better protected from third-party cyber security risks. Companies should enforce stricter requirements, including added layers of due diligence when entering partnerships with external organisations.

4. 2025 is The Year of Regulation

As cyber security threats continue to grow more complex and damaging, global regulatory bodies have been stepping up enforcement to protect critical infrastructure, personal data, and the global economy. The landscape of compliance and regulatory oversight in cyber security could shift significantly in 2025, with broad implications for businesses, security practices, and the industry overall.

Enforcement could become much more aggressive, with substantial penalties for breaches or negligence. Increased legal accountability might surprise organisations, pushing them to adopt comprehensive security standards far beyond current compliance frameworks.

Currently, regulations vary significantly by region, which can be costly and confusing for global companies that operate in many different territories. By 2025, we may see an effort toward harmonizing cyber security standards, especially across the EU, U.S., and parts of Asia. This would mean more uniform standards around data protection, incident response, and cross-border data flow security, although companies would still have to meet the most stringent requirements in any operating region.

Building on frameworks such as GDPR, more regions could build stronger cyber security regulations. This could include enforcing privacy rights, as well as obligating organisations to limit data collection, improve transparency, and seek explicit consent for data use. Companies may face stringent requirements to secure consumer data, notify users of breaches quickly, and demonstrate the minimum collection of personal information.

The cyber security landscape is dynamic, and as new technologies evolve, so do the threats and industry responses. Preparedness in 2025 will likely hinge on proactively adapting and defending organisations in the face of growing risks.