Infosecurity’s Top 10 Cybersecurity Stories of 2025：Infosecu

Infosecurity Magazine Home » News » Infosecurity’s Top 10 Cybersecurity Stories of 2025. # Infosecurity’s Top 10 Cybersecurity Stories of 2025. Cybersecurity dominated headlines throughout 2025, with a year marked by high-profile breaches, evolving attack techniques and major shifts in industry practices. From critical zero-day vulnerabilities and supply chain threats to AI-driven risks and vendor shake-ups, the security landscape has been anything but static. In this roundup, we’ll dive into some of Infosecurity Magazine’s most-read stories of the year, covering the incidents, innovations and trends that shaped the conversation in cybersecurity. Three major cybersecurity firms, Microsoft, SentinelOne and Palo Alto Networks, did not participate in MITRE’s 2025 ATT&CK Evaluations. A criminal proxy network infected thousands of internet-of-things (IoT) and end-of-life consumer devices worldwide, primarily residing in an infrastructure based in Turkey, turning them into an open “proxy-for-rent” service that enables anonymous malicious activities like ad fraud, distributed denial-of-service (DDoS), brute‑force attacks and data exploitation.

网络安全行业深度分析

1. 2025 Cybersecurity Reality Check: Breaches Hidden, Attack Surfaces Growing, and

# 2025 Cybersecurity Reality Check: Breaches Hidden, Attack Surfaces Growing, and AI Misperceptions Rising. **Bitdefender’s 2025 Cybersecurity Assessment Report** paints a sobering picture of today’s cyber defense landscape: mounting pressure to remain silent after breaches, a gap between leadership and frontline teams, and a growing urgency to shrink the enterprise attack surface. The annual research combines insights from over **1,200 IT and security professionals** across six countries, along with an analysis of **700,000 cyber incidents** by Bitdefender Labs. This year’s findings spotlight a disturbing trend: **58% of security professionals were told to keep a breach confidential**, even when they believed disclosure was necessary. The pressure is especially acute for **CISOs and CIOs**, who report higher levels of expectation to remain quiet compared to frontline staff. In response, **68% of surveyed organizations list attack surface reduction as a top priority**, with the U.S. The Hidden Security Risks of Shadow AI in Enterprises.

查看完整报道 →

2. March 2025 Cyber News Recap – SWK Technologies

Learn about March 2025’s major cybersecurity news stories, including FBI ransomware warnings, a record $1.5B crypto heist and HIPAA

查看完整报道 →

3. 5 must-read cybersecurity stories of 2025 | World Economic Forum

* Cybersecurity was a key topic in 2025, on the global news agenda and for the World Economic Forum. The intersection of AI and cybersecurity was a hot topic at the Forum’s Annual Meetings of the Global Future Councils and Cybersecurity in Dubai in October. Generative AI is also being used in identity theft and zero-day exploits targeting unknown security flaws, finds the Forum’s *Artificial Intelligence and Cybersecurity: Balancing Risks and Rewards* report. The Cyber Resilience Compass Image: World Economic Forum. Only 14% of organizations have the right cyber talent, while the skills gap has grown by 8% since 2024, according to the *Global Cybersecurity Outlook 2025*. The release of the *Global Cybersecurity Outlook 2025* in January set the tone for the year, warning of a “widening cyber inequity” between cyber-resilient organizations and those left behind. In a world of AI threats and orbital risks, cyber resilience is no longer just about protecting data; it is about protecting our way of life.

查看完整报道 →

4. Cybersecurity Report 2025: AI Threats, Email Server Security, and Advanced Threa

## Unveiling the state of cybersecurity: Insights, trends, and strategic imperatives. As we navigate the ever-evolving landscape of cybersecurity, understanding the latest trends and emerging threats is paramount. Deloitte’s Global Cyber Threat Intelligence (CTI) Annual Cyber Threat Trends 2025 report offers a comprehensive analysis of the cyberthreat environment, providing actionable insights to help organizations bolster their defenses and stay ahead of adversaries. This report highlights the key trends; threat vectors; and emerging tactics, techniques, and procedures that have shaped the cybersecurity domain over the past year. Leveraging our deep expertise and global reach, we provide a nuanced understanding of organizations’ threats and offer strategic recommendations to enhance resilience. Ransomware continues to dominate the threat landscape, with large-scale groups exploiting zero-day vulnerabilities and leveraging the Ransomware-as-a-Service (RaaS) model. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the “Deloitte” name in the United States and their respective affiliates.

查看完整报道 →