Experts forecast major shifts in cybersecurity by 2025

Cybersecurity experts have laid out a series of predictions for 2025, forecasting significant shifts in cybersecurity tactics and technologies.

These predictions highlight the increasing complexity of cyber threats, especially against widely used systems like Microsoft's Active Directory (AD) and critical infrastructure networks.

Lincoln Goldsmith, Director of Channels & Alliances APJ at cybersecurity firm Semperis, has pointed out that Active Directory will become a primary target for cybercriminals in the coming year.

This system is central to most enterprises' operational resilience, managing access for a vast number of users and resources. However, it has become a blind spot for many security teams, as only 27% of companies maintain dedicated, AD-specific backups. This vulnerability has been increasingly exploited by hackers, prompting the Australian Signals Directorate and the Five Eyes Alliance to alert businesses about the growing threat.

Furthermore, Goldsmith predicts that the Five Eyes Alliance will likely disrupt a "significant nation-state-backed cyberattack."

Ongoing geopolitical tensions, particularly involving Russia and the Middle East, are expected to result in attempted coordinated attacks on Western nations to disrupt democratic processes.

The intelligence-sharing capabilities between member countries of the Five Eyes Alliance are crucial in anticipating and neutralising such threats.

Critical infrastructure, another area of concern, faces an upsurge in both the frequency and sophistication of attacks. Institutions like hospitals and government agencies, which often depend on outdated and unsupported software, are at heightened risk. These vulnerabilities, coupled with the operational necessity of minimal downtime, make critical services prime targets for ransomware attacks. Additionally, geopolitical instability has heightened the risk of state-sponsored cyber incursions targeting vital public infrastructure.

In the realm of cybersecurity automation, Matt Neiderman, Chief Strategy Officer at SonicWall, anticipates that security operations centre (SOC) services will see increased automation in 2025.

He cites a study highlighting a rise in cybersecurity-related AI patents as evidence of the sector's growth. Yet, despite these advancements, Neiderman argues for a "human + machine" approach, noting the importance of human oversight alongside automated systems due to skill shortages and economic factors.

The predictions extend to the Internet of Things (IoT) security as well. Dan Berte, Director of IoT Security at Bitdefender, believes 2025 will be pivotal for IoT security improvement through various certification programmes.

These initiatives aim to secure billions of devices vulnerable to exploitation due to known vulnerabilities. Despite laying down fundamental requirements, Berte cautions that "achieving comprehensive security will require extensive collaboration between the private sector and governments and will take considerable time to reach maturity."

Lastly, Tarun Desikan, Executive Vice President of Product Strategy at SonicWall, tempers expectations surrounding the application of Generative AI in cybersecurity.

Although AI-powered security demonstrations have shown potential, Desikan predicts that 2025 will mark a shift from hype to reality, focusing on practical deployments rather than conceptual models. The complex nature of integrating GenAI into operational systems will continue to be a formidable challenge, and the industry is expected to concentrate on resolving these practical hurdles.

These forecasts collectively underscore the dynamic and continuously evolving landscape of cybersecurity. Organisations are urged to anticipate the outlined threats and prepare to adapt their security strategies accordingly.

The emphasis remains on bolstering resilience through technological advancement complemented by strategic human intervention.