Cybersecurity Trends and the Role of AI in 2025
As we look ahead to 2025, several key cybersecurity trends are emerging. One forecast from ExtraHop highlights three priorities: tracking new ransomware groups such as RansomHub, 8Base and Cl0P, defending the continued abuse of Active Directory, and preparing for increased attacks on the AI supply chain [1]. The report notes that the rapid pace at which organisations are developing artificial intelligence applications has created a large and vulnerable attack surface, and adversaries are expected to aggressively target AI supply chains [1].
While AI is being used to improve security operations, it is also empowering criminals. CERT‑MU’s 2025 trends report warns that adversaries are using AI and machine learning to identify vulnerabilities, craft realistic deepfakes and automate attacks. Tools like FraudGPT and WormGPT provide ready‑made resources to help cybercriminals launch sophisticated campaigns [2]. Deepfake incidents increased markedly in 2024, demonstrating how AI can be weaponised [3].
Together, these predictions suggest that businesses should prioritise securing their AI development pipelines and invest in identity‑first security strategies. As attackers leverage generative AI to automate reconnaissance and social engineering, defenders must adopt AI‑assisted threat detection and maintain robust security hygiene across supply chains.
- ExtraHop’s 2025 forecast notes that ransomware groups RansomHub, 8Base and Cl0P will drive extortion, Active Directory will remain a significant post‑exploitation target, and rapid AI development will create a vulnerable supply‑chain attack surface.
- CERT‑MU observes that cybercriminals are using AI to identify vulnerabilities, generate deepfakes and automate attacks; tools like FraudGPT and WormGPT make these capabilities accessible.
- Deepfake attacks increased from 50 % to 60 % in 2024, illustrating the growing sophistication of AI‑powered social engineering.
Comments