Means, Motives & Opportunities

Uploaded on 2024-12-27 in TECHNOLOGY--Resilience, FREE TO VIEW

What cyber risks can your organization expect in 2025? We'll explore the factors that drive cyberattacks and the threats they will create in the new year.

You are probably familiar with the "means, motive, opportunity" triad from crime shows or courtroom dramas. In cyberattacks, the "means" are the tools at attackers' disposal.

Means

In 2025, hackers will continue to use proven methods like phishing, ransomware, and password cracking, but these will evolve. Generative AI and Large Language Models (LLMs) will make phishing emails more convincing, while deepfakes will aid in creating realistic voice and video scams. AI will also mutate malware code, evading signature-based detection.

Advances in computing hardware will make password cracking faster and easier. 

Cybercriminals are also becoming more organized, dividing tasks among specialized groups - those handling initial access, malware deployment, or ransom collection - creating economies of scale.

Lastly, people remain key vulnerabilities. Social engineering exploits human errors, such as clicking malicious links or falling for scams, making individuals unwitting tools in attacks.

Motive

Attackers’ motives are usually financial or political. Financial motives will remain strong, with ransomware extortion expected to reach record levels in 2025. Political motives include destabilizing societies, spreading disinformation, or undermining governments through fake media.

King Louis the Fourteenth of France famously had the phrase ultima ration regum cast on cannons - "the last resort of kings". Military goals are ultimately the outcome of political goals. For instance, a cyberattack could be launched on satellite communication systems to blind enemy forces. It has happened before and is very likely to happen again in the future.

Opportunity

Opportunities are external factors attackers exploit to advance their goals. Every organization presents a potential opportunity, but those with valuable assets, known vulnerabilities, or weaker defenses are especially attractive.

As a rule of thumb, crises and uncertainty create opportunities for cyberattacks. In 2025, geopolitical tensions, such as the Russian invasion of Ukraine, Chinese expansionism, the Syrian government's collapse, and a leadership change in the country which simultaneously has the world's biggest economy and the world's most powerful armed forces, will provide fertile ground.

In the same vein, pandemics also indirectly heighten cyber risk. A new outbreak would create a polycrisis that attackers would exploit.

The Predictions

Given these factors, the following threats will likely dominate in 2025:

1. Top Attack Types 
Ransomware, Data Leaks, and DDoS Attacks will remain the top threats, with attackers leveraging zero-day vulnerabilities and compromised credentials to gain system access.

2.  Physical Systems Under Attack
Cyberattacks affecting physical infrastructure will increase due to their high return on investment for attackers. Defense and other critical infrastructure sectors like power, water, and telcos will be prime targets.

3.  Fused Financial & Political Goals
Financial and political motives will get more mixed. North Korea will continue funding its political ambitions through financially motivated cyberattacks. Russia is expected to expand its use of cybercriminal gangs, blending criminal and state-sponsored activities to obscure its involvement.

4.  Disinformation
Ongoing political tensions and likely political disruptions will be accompanied by a crescendo of disinformation, as nation-state attackers will try to sow discord and position themselves favorably in the public's perception.

5.    Exploitation of Crises
Major crises will fuel phishing campaigns and other attacks. From potential disease outbreaks like mPox or avian flu, to wars, coups, and infrastructure failures, attackers will exploit public uncertainty and fear.

What You Should Do

In 2025, means, motives and opportunities will lead to an increase in cyber attacks, increasing cyber risk for organizations. But that does not mean that your organization is helpless.

To understand how you can mitigate those risks, find a partner with deep expertise in cybersecurity and a broad set of solutions that can engage in a conversation with you about your cybersecurity needs. 

Kurt Thomas is Senior System Engineer at Fortra 

Image: 

You Might Also Read: 

Understanding The Threat Of QR Codes & Quishing:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Cybersecurity Measures To Enhance Data Security In 2025
Cybersecurity: What Can We Expect In 2025? »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Baker McKenzie

Baker McKenzie

Baker & McKenzie is an international law firm. Practice areas include Data & Technology.

TruSTAR Technology

TruSTAR Technology

TruSTAR is a threat intelligence exchange platform built to protect and incentivize information sharing.

Center for Long-Term Cybersecurity (CLTC)

Center for Long-Term Cybersecurity (CLTC)

The Center for Long-Term Cybersecurity is developing and shaping cybersecurity research and practice based on a long-term vision of the internet and its future.

Aiuken Cybersecurity

Aiuken Cybersecurity

Aiuken is an international IT Security company, focused on communications and IT technologies, specialised in Security and Cloud Services solutions with high added value.

Onward Security

Onward Security

Onward Security provides security solutions including network & application assessment, product security testing and security consulting services.

GateKeeper Enterprise

GateKeeper Enterprise

The GateKeeper Enterprise software is an identity access management solution. Automated proximity-based authentication into computers and websites. Passwordless login and auto-lock PCs.

Resilience Cyber Insurance Solutions

Resilience Cyber Insurance Solutions

Resilience Cyber Insurance combines insurance expertise with cybersecurity and data talent to deliver clear, effective solutions to protect you for the cyberrisks of today—and tomorrow.

The Citadel Department of Defense Cyber Institute (CDCI)

The Citadel Department of Defense Cyber Institute (CDCI)

CDCI is established to address the critical national security needed for a skilled cybersecurity workforce.

Theta432

Theta432

THETA432 is a cybersecurity firm that provides 24/7/365 managed prevention, detection, response, Hybrid SOC, cyber defense monitoring services with dynamically defined defense (3D™).

Hackuity

Hackuity

Hackuity is a breakthrough technology solution that rethinks the way of managing IT vulnerabilities in enterprises.

Psybersafe

Psybersafe

Psybersafe is a hands-on, behaviour-changing training system that keeps your people and your business cyber safe.

SK Shieldus

SK Shieldus

SK shieldus are a converged security provider with business capabilities in both cybersecurity and physical security based on Big-Tech.

KCS Group Europe

KCS Group Europe

KCS Group helps its clients to identify and deal with any risks, weaknesses and threats which could impact on the business financially or reputationally.

Intertec Systems

Intertec Systems

Intertec Systems is an award-winning, global IT solutions and services provider that specializes in digital transformation, cybersecurity, sustainability, and cloud services.

VeriBOM

VeriBOM

VeriBOM is a SaaS security and compliance platform that helps protect you and your customers through automation, documentation, and transparency for every software application you build or run.

Clango

Clango

Clango employs an identity-centric approach to optimizing your cybersecurity investment while minimizing risk.