Preparing for Emerging Cyber Threats: Insights from Recent Attacks

Jake AllmarkJake Allmark
3 min read

07/04/2025

The cyber threat landscape has undergone a dramatic transformation in recent years. What was once dominated by opportunistic attackers and simple malware campaigns has now evolved into a battlefield defined by nationstate operations, financially motivated cybercriminal syndicates, and highly coordinated hacktivist collectives. Threat actors are no longer just exploiting known vulnerabilities they are leveraging serious zero-day exploits, living-off-the-land techniques, and new AI-powered tooling to maintain persistence and evade detection in our modern day firewalls, lets talk about some of the new emerging cyber threats treads happening right now.

  • Ransomware attacks continues to be a predominant threat, with a notable increase in both the number and complexity of attacks. According to the World Economic Forum's Global Cybersecurity Outlook 2025, 72% of organizations reported an uptick in cyber risks, with ransomware remaining a top concern. The financial sector, in particular, has been heavily targeted, with data breaches, hacking, and extortion causing major disruptions across not only the nation but the world.

  • Supply chain attacks have become increasingly prevalent and costly. Between 2021 and 2023, such attacks surged by an alarming 431%, with projections indicating a continued rise through 2025. Gartner himselfpredicts that by 2025, 45% of global organizations will be affected in some way by a supply chain attack. These statistics underscore the urgent need for organizations to scrutinize their supply chain security practices.

  • Educational institutions have emerged as significant targets for cybercriminals. Over a third of schools and colleges in England experienced debilitating cyber attacks in the past academic year, with some hackers demanding ransoms averaging £5.1 million - this isn’t much of a surprised this is similar to the NHS's historic vulnerabilities all caused by outdated systems and underfunded IT departments

  • Escalation of State-Sponsored Cyber Activities - Geopolitical tensions have translated into increased cyber activities by state sponsored groups. For instance a coalition of approximately 90 pro-Russian and pro-Palestinian hacktivist groups, known as Holy League, has been launching weekly cyberattacks against UK organizations, including military and government agencies.

From my perspective as someone training to be a SOC analyst and blue team defender, this constant evolution in the threat landscape is both exciting and very concerning i mean this helps us with the challenge of defending against modern threats and not only that it forces us to stay current, to constantly improve, and to think like adversaries without ever becoming them. But it's clear to us that many orgs, especially underfunded ones like schools or public health sectors, are simply not equipped to keep up with the trends. The rise in AI-driven attacks, state-sponsored operations, and supply chain vulnerabilities makes it obvious that traditional reactive security isn't enough anymore. It shows we need to adapt a proactive mindset as well to not just rely on tools, but on skilled people who understand attack patterns and behavior.

For me, that's the core of why I do this not just to stop threats, but to stay ahead of them.

Sources:

https://www.crowdstrike.com/en-us/global-threat-report/

https://www.weforum.org/publications/global-cybersecurity-outlook-2025/digest/

https://www.standard.co.uk/news/uk/british-army-royal-navy-cyberattacks-pro-russia-palestine-hackers-b1221112.html

1
Subscribe to my newsletter

Read articles from Jake Allmark directly inside your inbox. Subscribe to the newsletter, and don't miss out.

#cybersecurityblueteamSOCCyber ThreatsAttack surfaceransomwarevulnerabilities

Written by

Jake Allmark
Jake Allmark