5 must-read cybersecurity stories of 2025

* Cybersecurity was a key topic in 2025, on the global news agenda and for the World Economic Forum. The intersection of AI and cybersecurity was a hot topic at the Forum’s Annual Meetings of the Global Future Councils and Cybersecurity in Dubai in October. Generative AI is also being used in identity theft and zero-day exploits targeting unknown security flaws, finds the Forum’s *Artificial Intelligence and Cybersecurity: Balancing Risks and Rewards* report. The Cyber Resilience Compass Image: World Economic Forum. Only 14% of organizations have the right cyber talent, while the skills gap has grown by 8% since 2024, according to the *Global Cybersecurity Outlook 2025*. The release of the *Global Cybersecurity Outlook 2025* in January set the tone for the year, warning of a “widening cyber inequity” between cyber-resilient organizations and those left behind. In a world of AI threats and orbital risks, cyber resilience is no longer just about protecting data; it is about protecting our way of life.

查看原文

详细内容

1. 10 Major Cyberattacks And Data Breaches In 2025

* [▸ 2025](https://www.crn.com/news/security/2025). * [1](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025#). * [2](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=2). * [3](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=3). 11](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=11). * [Next](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=2). In January, three more U.S. telecommunications providers impacted in the attacks by the China-linked espionage group tracked as Salt Typhoon were [disclosed](https://www.crn.com/news/security/2025/three-more-telecom-providers-impacted-in-china-linked-hacks-report “disclosed”), according to the _Wall Street Journal_. Attacks targeting the systems continued to impact SonicWall customers until the end of the year, with the company [disclosing](https://www.crn.com/news/security/2025/cisco-sonicwall-disclose-new-attacks-exploiting-zero-day-flaws “disclosing”) exploitation of a new, zero-day SMA1000 vulnerability in December. In July, a [wave](https://www.crn.com/news/security/2025/microsoft-sharepoint-server-attacks-are-close-to-worst-case-scenario-researcher “wave”) of widespread cyberattacks struck customers that use on-premises Microsoft SharePoint servers through exploitation of zero-day vulnerabilities in the systems. Along with the Microsoft SharePoint attacks in July, major campaigns tied to China-based attackers in 2025 included a wave of espionage attacks targeting VMware vSphere systems, which was [disclosed](https://www.crn.com/news/security/2025/5-things-to-know-on-vmware-brickstorm-attacks “disclosed”) in December. * [1](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025#). * [2](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=2). * [3](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=3). 11](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=11). * [Next](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025?page=2). [To Top](https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025#top).

2. [PDF] Global Cybersecurity Outlook 2025 | World Economic Forum

30% Uncertainty arising from geopolitical tensions 20% Increasing sophistication of cybercrime 22% Vulnerabilities in complex supply chain interdependencies 26% 12% Rapid adoption of emerging technologies 7% Cyber skills gap 6% Expanding regulatory requirements with insufﬁcient harmonization 6% IT–OT convergence Challenges to organizations posed by cybersecurity threats F I G U R E 9 Global Cybersecurity Outlook 2025 23 The growing complexity of supply chains and the limited control organizations have over them has become a primary concern for executives, emerging as the top cyber risk from an ecosystem perspective. Following the US Executive Order 14028: Improving the Nation’s Cybersecurity, which put a strong emphasis on software bill of materials (SBOM),38 other standards and regulations such as Payment Card Industry Data Security Standard (PCI DSS) and the EU’s Cyber Resilience Act introduce SBOM-related requirements in order to allow organizations to better understand, manage and secure their applications.39 Small organizations Medium organizations Large organizations 01 Complex and evolving threat landscape 01 Complex and evolving threat landscape 01 Third-party risk management 02 Skills shortage 02 Third-party risk management 02 Complex and evolving threat landscape 03 Lack of incident response preparedness 03 Complexity of environments (e.g. IT, OT, IoT) 03 Complexity of environments (e.g. IT, OT, IoT) Global Cybersecurity Outlook 2025 24 Another important issue is the uncertainty surrounding supply chain interdependencies.

3. 2025 Cyber Threat Trends: AI, Ransomware, and Access Risk

The volume, diversity, and impact of cyber incidents continued to grow, but more importantly, clear patterns emerged in how attackers operate, which sectors they prioritize, and where defensive strategies continue to fall short. Rather than relying solely on new exploits or disruptive malware, attackers increasingly focused on obtaining and reusing legitimate credentials to maintain access, move laterally, and blend into normal operations. Erie Insurance disclosed a disruptive cyber incident consistent with the group’s methods, and Aflac confirmed a breach believed to be linked to Scattered Spider, with attackers potentially accessing highly sensitive personal and health data. A July report from Cyble highlighted a growing trend in **hacktivist operations targeting industrial control systems and access-based infrastructure**. In July, reporting also revealed that the Iranian-linked ransomware group Pay2Key.I2P offered affiliates up to **80 percent of ransom proceeds** **for attacks targeting U.S. and Israeli organizations**, generating approximately $4 million since February.