CyberCX Hack Report: Insights from a year of offensive security testing

CyberCX 2025 Threat Report reveals cyber landscape is changing

CyberCX Threat Report 2025

Melbourne, Australia – 10 February 2025


CyberCX 2025 Threat Report reveals cyber landscape is changing


CyberCX, Australia and New Zealand’s leading cyber security provider, has released its annual Threat Report for 2025, revealing that business email compromise (BEC) remained the top incident type responded to by the company’s Digital Forensics and Incident Response team (DFIR) and that espionage-related incidents are taking more than two weeks longer to discover than in 2023.

Using data from a sample of serious incidents CyberCX’s DFIR team responded to in 2024, the report highlights a range of important cyber trends including:

Hamish Krebs, Executive Director of Digital Forensics and Incident Response at CyberCX said: “Despite the best efforts of defenders over the past 12 months, the global cyber threat landscape has continued to deteriorate as adversaries evolve their tactics and up the tempo of attacks.

“Malicious actors are moving into your cloud infrastructure more than ever before, cyber extortion groups continue to iterate their foul business despite well publicised disruption by global law enforcement, and the widespread deployments of tools like Endpoint Detection and Response (EDR) is driving changes to the way adversaries compromise networks. MFA is not enough, managed Service Providers (MSP) are still a weak point, and legacy infrastructure sticks out like a sore thumb when it comes to an organisation’s security posture.

“The CyberCX 2024 Threat Report reflects the hard-learned insights from incidents we responded to in 2024. Our hope is that what we have seen can help organisations and security teams better understand the threat landscape and bolster their cyber defences by allocating their limited resources to match the changing tactics of attackers.”

You can access the full DFIR Threat Report 2025 here: https://cybercx.com.au/resource/dfir-threat-report-2025/

 

ENDS

 


About CyberCX

CyberCX is the leading provider of end-to-end cyber security and cloud services. With a workforce of 1,400 cyber security professionals, CyberCX is a trusted partner to private and public sector organisations, helping customers confidently manage cyber risk, respond to incidents, and build resilience in an increasingly complex and challenging threat environment.

 


Contact

[email protected] 

Other News

Ready to get started?

Find out how CyberCX can help your organisation manage risk, respond to incidents and build cyber resilience.