Mimecast Global Threat Intelligence Report 2025

Keypoints

• Annual cybersecurity reports typically include sections such as Introduction, Executive Summary, Key Findings, Risk Radar, Threats in Focus, Campaign Details, Industry Snapshot, and Recommendations, each providing insights into evolving threat landscapes and defense strategies.
• Key statistics from the 2025 report reveal over 9.13 billion threats flagged from 24 trillion data points and show a 500% increase in ClickFix attacks, 2 million malicious SVG file detections, and a rise of phishing to 77% of all attacks.
• Major trends include attackers leveraging AI to automate spear-phishing, using legitimate services like DocuSign and PayPal to bypass security controls, and shifting communication channels from email to phone to enhance attack effectiveness.
• Threat actors increasingly focus on exploiting the human element with AI-augmented social engineering techniques, multi-channel communication, and living off trusted services (LOTS), making detection and prevention more complex.
• Reports emphasize recurring themes such as the need for comprehensive security hygiene, awareness training targeting AI-enhanced attacks, application of least privilege and separation of duty, and deployment of layered detection systems.
• Significant findings include the rise of ransomware gangs adopting trusted services abuse, sophisticated business email compromise (BEC) using AI-fabricated email threads, and exploitation of remote monitoring tools like LogMeIn for unauthorized access.
• Sector-specific insights show industries like Arts & Entertainment, Manufacturing, and Real Estate face tailored attack methods, highlighting the importance of industry-focused security and awareness efforts.
• Recommendations stress integrating technical controls with governance and human-centric approaches, preparing for AI-driven threat developments, safeguarding collaboration platforms, and adopting zero trust models for better risk management.