Contact us
,

Emerging data security threats in 2025 and beyond

As 2024 and all of its challenges come to an end, we’re taking a look at what might be ahead in 2025. What emerging threats can we start to think about, look out for, and plan our next cyber security strategy around?

Before we look in detail at each potential threat, here’s what the Nimbus Blue Director, David Tawse, has to say about what might be coming up for businesses in Aberdeen, Scotland, and the UK in 2025:

"As we move into 2025 and beyond, the data security landscape will continue to evolve at a rapid pace, driven by the increasing adoption of AI, IoT, and cloud-based technologies. One of the most pressing threats will be the rise of AI-driven cyberattacks. Another key challenge will be the growing complexity of supply chain attacks."
David Tawse
Director, Nimbus Blue

 

Now, let’s take a look at the specific data threats we’re likely to face in 2025 and how your business can mitigate them.

AI-powered cyber attacks

Artificial Intelligence is always going to feature when thinking about new threats because it brings a level of uncertainty and unpredictability to the world of IT security.

The influence of AI will be vast. As we approach 2025, the cyber security landscape will be shaped by it.

"One of the most pressing threats will be the rise of AI-driven cyberattacks, where malicious actors use advanced algorithms to identify vulnerabilities, automate phishing campaigns, and bypass traditional security measures at an unprecedented scale. This means businesses will need to focus on leveraging AI not just for productivity but also for bolstering their cyber defences, ensuring their systems are proactive and adaptive to emerging threats."
David Tawse
Director, Nimbus Blue

Attack automation

AI algorithms can rapidly scan vast networks and systems, identifying vulnerabilities and weaknesses at a scale far beyond our own capabilities.   

Once identified, AI can automatically exploit these vulnerabilities, launching attacks without human intervention.

Personalised phishing attacks

AI analyses vast amounts of personal data to craft highly targeted and convincing phishing emails. These emails are tailored to individual recipients, increasing the likelihood of successful attacks.

Autonomous botnets

AI-powered botnets can autonomously launch distributed denial-of-service (DDoS) attacks, overwhelming targets with traffic. These botnets can rapidly scale and adapt to countermeasures.

AI-generated deepfakes

Malicious actors can use deepfakes to impersonate trusted individuals, such as CEOs or executives, to deceive employees into revealing sensitive information or approving unauthorised transactions.

Mitigation strategies for AI-powered cyber attacks

  • Security tools that leverage AI, like our Security Operations Centre (SOC), to detect and respond to threats in real-time
  • A comprehensive cyber security framework to protect sensitive information and prevent unauthorised access to systems
  • Incident Response Planning to help detect, respond to, and recover from incidents that affect business operations and data security
  • Employee awareness training to educate employees about the dangers of each AI-powered cyber attack and how to identify and report them
  • Data privacy and compliance to implement strong access controls and ensure sensitive data is deleted after its intended use, minimising the risk of exposure

Supply chain attacks

Between 2019 and 2022, software supply chain attacks skyrocketed by 742%. And, as supply chains become increasingly global and interconnected, they present an attack surface for cybercriminals that will be larger than ever in 2025.

Attackers can exploit vulnerabilities in any part of the supply chain, from suppliers to logistics providers, to gain unauthorised access to sensitive data or disrupt operations.

"These attacks exploit trust relationships between businesses, potentially compromising sensitive data without directly breaching the organisation itself. To address this, organisations must adopt a zero-trust approach to security, conduct rigorous third-party risk assessments, and maintain transparency across their digital ecosystems."
David Tawse
Director, Nimbus Blue

The ability to attack many targets simultaneously through supply chain vulnerabilities has made supply chains increasingly attractive to criminals. And vendors with poor security controls can leave themselves and the wider supply chain open to attack.

The increasing use of third-party software, website builders, third-party data stores, and open-source components further complicates the security landscape, making it challenging to identify and mitigate potential risks.

"Although many businesses have effectively enacted internal cybersecurity protections, less than half have conducted risk assessments of their supply chain."
The Marsh State of Cyber Resilience Report

Mitigation strategies for supply chain attacks

  • Third-party risk assessments to carefully vet and monitor third-party software, ensuring they’re from trusted sources and have been thoroughly tested
  • Require regular security audits and certifications from suppliers
  • Regular security monitoring like that provided through our SOC to continuously monitor networks for signs of suspicious activity and respond promptly to incidents
  • Strong access controls, such as multi-factor authentication, to protect sensitive systems and data
  • Security awareness to educate employees about the risks of supply chain attacks and how to identify and report suspicious activity
 

Internet of Things (IoT) and Operational Technology (OT) security risks

Many IoT devices are insecure, lacking strong passwords and regular updates, while OT systems, often outdated and physically accessible, are vulnerable to cyberattacks. And, as IT and OT systems converge, the risk of data breaches is set to grow in 2025.

IoT Security Risks

  • Insecure device configuration: Many IoT devices ship with default, easily guessable passwords, leaving them vulnerable to attack   
  • Lack of patching: IoT devices often lack regular security updates, leaving them susceptible to known vulnerabilities
  • Data privacy concerns: IoT devices collect vast amounts of personal data, which can be misused if compromised
  • Supply chain vulnerabilities: IoT devices may contain components from various suppliers, increasing the risk of malicious hardware or software

OT security risks

  • Integration with IT networks: As OT systems become increasingly connected to IT networks, they become more exposed to cyber threats
  • Outdated systems: Many OT systems are legacy systems that are difficult to patch and secure
  • Limited security expertise: OT environments often lack dedicated cybersecurity expertise
  • Physical security risks: OT systems are often located in physically accessible locations, making them vulnerable to physical attacks

Mitigation strategies for IoT and OT security risks

  • Asset management to create an inventory of all IoT and OT devices and segment them from critical networks
  • Strong password policies to enforce strong, unique passwords for all IoT and OT devices
  • Security awareness training to educate employees about IoT and OT security risks
  • Incident Response Planning to develop and test an incident response plan for IoT and OT security incidents
  • Third-party risk management to carefully vet and monitor third-party vendors that provide IoT and OT solutions
  • Data privacy and compliance to implement strong access controls and ensure sensitive data is deleted after its intended use, minimising the risk of exposure
 

Planned obsolescence

When devices reach the end of their support lifecycle, they no longer receive security updates and patches. This leaves them exposed to various threats, such as malware, ransomware, and data breaches. Cybercriminals can exploit these vulnerabilities to gain unauthorised access to sensitive information.

With Microsoft ending support for Windows 10 in late 2025, millions of devices will become obsolete. Many of these systems lack the hardware specifications to upgrade to Windows 11, forcing businesses to either replace their hardware or seek alternative operating systems.

This mass influx of outdated devices will create a prime target for cyberattacks, posing a significant security risk in 2025.

Mitigation strategies for planned obsolescence

  • Implement a device lifecycle management strategy so you have a comprehensive plan for acquiring, deploying, maintaining, and retiring IT assets
  • Prioritise security updates to keep devices updated with the latest security patches to address vulnerabilities
  • Secure data disposal procedures to prevent sensitive information from falling into the wrong hands
  • Consider extended support options offered by vendors or third-party providers
  • Adopt a circular economy approach to encourage the reuse, repair, and recycling of electronic devices to reduce waste and minimise security risks – look out for a future article on this subject

Cloud security challenges

Businesses in 2025 will face some specific data security threats from the continued reliance on cloud solutions and environments.

  • Data privacy and compliance: As data privacy regulations like GDPR continue to evolve, businesses must ensure that their cloud providers comply with these regulations and implement robust data protection measures
  • Data security breaches: Cloud environments are increasingly targeted by cybercriminals. Businesses must adopt strong security measures, such as encryption, access controls, and regular security audits to protect sensitive data
  • Cloud misconfigurations: Misconfigurations in cloud environments can lead to accidental data exposure, unauthorised access, and other security risks. Businesses must implement strict configuration management practices to minimise these risks
  • Third-party risk management: Cloud providers often rely on third-party services. Businesses must carefully assess the security practices of these third-party providers to mitigate potential risks
  • Cloud supply chain attacks: Cybercriminals may target the supply chain of cloud providers, compromising the security of the entire cloud ecosystem

Mitigation strategies for cloud security challenges

  • Choose reputable cloud providers with a strong track record in security and compliance
  • Implement strong security controls and adopt strong security practices, such as encryption, access controls, and regular security audits   
  • Monitor cloud environments for security threats and vulnerabilities
  • Educate employees through training on cloud security best practices to minimise human error
  • Mitigate cloud supply chain attacks by working with your cloud providers to implement robust supply chain security measures
 

Quantum computing

Quantum computing is a revolutionary technology that utilises the principles of quantum mechanics to perform calculations. Unlike classical computers that use bits to represent information as 0 or 1, quantum computers use qubits, which can exist simultaneously in multiple states. The practice of integrating this powerful technology is becoming increasingly considered.

"35% of technologists surveyed expect quantum computing integration and implementation in their company’s operations to be started in 2025."
Institute of Electrical and Electronics Engineers (IEEE)

This emerging technology has the potential to break current encryption standards, compromising the security of sensitive data. Although this isn’t an imminent threat, there is future potential for cybercriminals to exploit quantum computers to decrypt encrypted data, exposing valuable information such as financial records, intellectual property, and personal data.

Mitigation strategies for quantum computing threats

  • Stay informed about the latest developments in quantum computing and cybersecurity
  • Security tools that leverage AI, like our Security Operations Centre, to detect and respond to threats in real-time
  • Employ Managed Security Services to protect your digital assets, information, and data against cyber threats and attacks
 

It’s time to create or update your cyber security strategy for 2025

You need an overarching security strategy to successfully evolve your data protection and adapt to the challenges of the year ahead.

"Data security in the coming years will require a strategic blend of technology, vigilance, and collaboration to stay ahead of the evolving threats we face."
David Tawse
Director, Nimbus Blue

As 2024 and all of its challenges come to an end, we’re taking a look at what might be ahead in 2025. What emerging threats can we start to think about, look out for, and plan our next cyber security strategy around?

Before we look in detail at each potential threat, here’s what the Nimbus Blue Director, David Tawse, has to say about what might be coming up for businesses in Aberdeen, Scotland, and the UK in 2025:

"As we move into 2025 and beyond, the data security landscape will continue to evolve at a rapid pace, driven by the increasing adoption of AI, IoT, and cloud-based technologies. One of the most pressing threats will be the rise of AI-driven cyberattacks. Another key challenge will be the growing complexity of supply chain attacks."
David Tawse
Director, Nimbus Blue

 

Now, let’s take a look at the specific data threats we’re likely to face in 2025 and how your business can mitigate them.

AI-powered cyber attacks

Artificial Intelligence is always going to feature when thinking about new threats because it brings a level of uncertainty and unpredictability to the world of IT security.

The influence of AI will be vast. As we approach 2025, the cyber security landscape will be shaped by it.

Attack automation

AI algorithms can rapidly scan vast networks and systems, identifying vulnerabilities and weaknesses at a scale far beyond our own capabilities.   

Once identified, AI can automatically exploit these vulnerabilities, launching attacks without human intervention.

Personalised phishing attacks

AI analyses vast amounts of personal data to craft highly targeted and convincing phishing emails. These emails are tailored to individual recipients, increasing the likelihood of successful attacks.

Autonomous botnets

AI-powered botnets can autonomously launch distributed denial-of-service (DDoS) attacks, overwhelming targets with traffic. These botnets can rapidly scale and adapt to countermeasures.

AI-generated deepfakes

Malicious actors can use deepfakes to impersonate trusted individuals, such as CEOs or executives, to deceive employees into revealing sensitive information or approving unauthorised transactions.

Mitigation strategies for AI-powered cyber attacks

  • Security tools that leverage AI, like our Security Operations Centre (SOC), to detect and respond to threats in real-time
  • A comprehensive cyber security framework to protect sensitive information and prevent unauthorised access to systems
  • Incident Response Planning to help detect, respond to, and recover from incidents that affect business operations and data security
  • Employee awareness training to educate employees about the dangers of each AI-powered cyber attack and how to identify and report them
  • Data privacy and compliance to implement strong access controls and ensure sensitive data is deleted after its intended use, minimising the risk of exposure

Supply chain attacks

Between 2019 and 2022, software supply chain attacks skyrocketed by 742%. And, as supply chains become increasingly global and interconnected, they present an attack surface for cybercriminals that will be larger than ever in 2025.

Attackers can exploit vulnerabilities in any part of the supply chain, from suppliers to logistics providers, to gain unauthorised access to sensitive data or disrupt operations.

"One of the most pressing threats will be the rise of AI-driven cyberattacks, where malicious actors use advanced algorithms to identify vulnerabilities, automate phishing campaigns, and bypass traditional security measures at an unprecedented scale. This means businesses will need to focus on leveraging AI not just for productivity but also for bolstering their cyber defences, ensuring their systems are proactive and adaptive to emerging threats."
David Tawse
Director, Nimbus Blue
"These attacks exploit trust relationships between businesses, potentially compromising sensitive data without directly breaching the organisation itself. To address this, organisations must adopt a zero-trust approach to security, conduct rigorous third-party risk assessments, and maintain transparency across their digital ecosystems."
David Tawse
Director, Nimbus Blue

The ability to attack many targets simultaneously through supply chain vulnerabilities has made supply chains increasingly attractive to criminals. And vendors with poor security controls can leave themselves and the wider supply chain open to attack.

The increasing use of third-party software, website builders, third-party data stores, and open-source components further complicates the security landscape, making it challenging to identify and mitigate potential risks.

"Although many businesses have effectively enacted internal cybersecurity protections, less than half have conducted risk assessments of their supply chain."
The Marsh State of Cyber Resilience Report

Mitigation strategies for supply chain attacks

  • Third-party risk assessments to carefully vet and monitor third-party software, ensuring they’re from trusted sources and have been thoroughly tested
  • Require regular security audits and certifications from suppliers
  • Regular security monitoring like that provided through our SOC to continuously monitor networks for signs of suspicious activity and respond promptly to incidents
  • Strong access controls, such as multi-factor authentication, to protect sensitive systems and data
  • Security awareness to educate employees about the risks of supply chain attacks and how to identify and report suspicious activity
 

Internet of Things (IoT) and Operational Technology (OT) security risks

Many IoT devices are insecure, lacking strong passwords and regular updates, while OT systems, often outdated and physically accessible, are vulnerable to cyberattacks. And, as IT and OT systems converge, the risk of data breaches is set to grow in 2025.

IoT Security Risks

  • Insecure device configuration: Many IoT devices ship with default, easily guessable passwords, leaving them vulnerable to attack   
  • Lack of patching: IoT devices often lack regular security updates, leaving them susceptible to known vulnerabilities
  • Data privacy concerns: IoT devices collect vast amounts of personal data, which can be misused if compromised
  • Supply chain vulnerabilities: IoT devices may contain components from various suppliers, increasing the risk of malicious hardware or software

OT security risks

  • Integration with IT networks: As OT systems become increasingly connected to IT networks, they become more exposed to cyber threats
  • Outdated systems: Many OT systems are legacy systems that are difficult to patch and secure
  • Limited security expertise: OT environments often lack dedicated cybersecurity expertise
  • Physical security risks: OT systems are often located in physically accessible locations, making them vulnerable to physical attacks

Mitigation strategies for IoT and OT security risks

  • Asset management to create an inventory of all IoT and OT devices and segment them from critical networks
  • Strong password policies to enforce strong, unique passwords for all IoT and OT devices
  • Security awareness training to educate employees about IoT and OT security risks
  • Incident Response Planning to develop and test an incident response plan for IoT and OT security incidents
  • Third-party risk management to carefully vet and monitor third-party vendors that provide IoT and OT solutions
  • Data privacy and compliance to implement strong access controls and ensure sensitive data is deleted after its intended use, minimising the risk of exposure
 

Planned obsolescence

When devices reach the end of their support lifecycle, they no longer receive security updates and patches. This leaves them exposed to various threats, such as malware, ransomware, and data breaches. Cybercriminals can exploit these vulnerabilities to gain unauthorised access to sensitive information.

With Microsoft ending support for Windows 10 in late 2025, millions of devices will become obsolete. Many of these systems lack the hardware specifications to upgrade to Windows 11, forcing businesses to either replace their hardware or seek alternative operating systems.

This mass influx of outdated devices will create a prime target for cyberattacks, posing a significant security risk in 2025.

Mitigation strategies for planned obsolescence

  • Implement a device lifecycle management strategy so you have a comprehensive plan for acquiring, deploying, maintaining, and retiring IT assets
  • Prioritise security updates to keep devices updated with the latest security patches to address vulnerabilities
  • Secure data disposal procedures to prevent sensitive information from falling into the wrong hands
  • Consider extended support options offered by vendors or third-party providers
  • Adopt a circular economy approach to encourage the reuse, repair, and recycling of electronic devices to reduce waste and minimise security risks – look out for a future article on this subject

Cloud security challenges

Businesses in 2025 will face some specific data security threats from the continued reliance on cloud solutions and environments.

  • Data privacy and compliance: As data privacy regulations like GDPR continue to evolve, businesses must ensure that their cloud providers comply with these regulations and implement robust data protection measures
  • Data security breaches: Cloud environments are increasingly targeted by cybercriminals. Businesses must adopt strong security measures, such as encryption, access controls, and regular security audits to protect sensitive data
  • Cloud misconfigurations: Misconfigurations in cloud environments can lead to accidental data exposure, unauthorised access, and other security risks. Businesses must implement strict configuration management practices to minimise these risks
  • Third-party risk management: Cloud providers often rely on third-party services. Businesses must carefully assess the security practices of these third-party providers to mitigate potential risks
  • Cloud supply chain attacks: Cybercriminals may target the supply chain of cloud providers, compromising the security of the entire cloud ecosystem

Mitigation strategies for cloud security challenges

  • Choose reputable cloud providers with a strong track record in security and compliance
  • Implement strong security controls and adopt strong security practices, such as encryption, access controls, and regular security audits   
  • Monitor cloud environments for security threats and vulnerabilities
  • Educate employees through training on cloud security best practices to minimise human error
  • Mitigate cloud supply chain attacks by working with your cloud providers to implement robust supply chain security measures
 

Quantum computing

Quantum computing is a revolutionary technology that utilises the principles of quantum mechanics to perform calculations. Unlike classical computers that use bits to represent information as 0 or 1, quantum computers use qubits, which can exist simultaneously in multiple states. The practice of integrating this powerful technology is becoming increasingly considered.

"35% of technologists surveyed expect quantum computing integration and implementation in their company’s operations to be started in 2025."
Institute of Electrical and Electronics Engineers (IEEE)

This emerging technology has the potential to break current encryption standards, compromising the security of sensitive data. Although this isn’t an imminent threat, there is future potential for cybercriminals to exploit quantum computers to decrypt encrypted data, exposing valuable information such as financial records, intellectual property, and personal data.

Mitigation strategies for quantum computing threats

  • Stay informed about the latest developments in quantum computing and cybersecurity
  • Security tools that leverage AI, like our Security Operations Centre, to detect and respond to threats in real-time
  • Employ Managed Security Services to protect your digital assets, information, and data against cyber threats and attacks
 

It’s time to create or update your cyber security strategy for 2025

You need an overarching security strategy to successfully evolve your data protection and adapt to the challenges of the year ahead.

"Data security in the coming years will require a strategic blend of technology, vigilance, and collaboration to stay ahead of the evolving threats we face."
David Tawse
Director, Nimbus Blue
Take a look at our latest Posts