OpenText 2025 Threat Report Overview
OpenText has released its 2025 Threat Report, highlighting the latest strategies employed by threat actors and providing guidance for security teams, managed security service providers (MSSPs), and end-users. Key findings from the report include significant trends in malware infections and evolving tactics.
Increase in Malware Infections
Malware infections targeting businesses surged by 28% year-over-year, marking the highest increase since 2020. This alarming trend indicates a pressing need for organizations to bolster their cybersecurity measures and remain vigilant against potential threats.
Geographic Hotspots for Attacks
Eastern and Central Europe have become focal points for malware infections, influenced by politically motivated attacks associated with the ongoing Russia-Ukraine conflict. Stakeholders in these regions must stay alert to the heightened risks and adapt their security protocols accordingly.
Sophistication of Phishing Campaigns
Phishing tactics are evolving, with threat actors becoming increasingly sophisticated. The report notes over 170 million instances of “Living Off the Land” strategies, indicating a significant shift in how these attacks are conducted and necessitating more advanced defenses from organizations.
Abuse of Major Services
Several well-known services, including Google APIs, Amazon AWS, and Cloudflare IPFS, have been notably misused by cybercriminals. This underscores the importance for organizations to monitor their service usage and implement safeguards to mitigate such vulnerabilities.
AI in Cybersecurity
Artificial intelligence (AI) is a pivotal factor in the ongoing cyber warfare landscape. While organizations leverage generative AI for enhanced productivity and deploy AI-driven cybersecurity tools, cybercriminals exploit it to conduct precise attacks, ranging from deepfake social engineering to advanced malware. This evolving dynamic has created an arms race in which speed and efficacy are critical.
Recent MSSP Developments
In the latest MSSP news, ManageEngine introduced AI enhancements to its privileged access management platform, PAM360. Meanwhile, Dutch startup Duna has secured $12.1 million to advance its business identity verification solution, aimed at improving fraud prevention. Ox Security successfully raised $60 million for its AI-driven code scanning platform, and Outpost24 launched two new risk protection modules to enhance visibility of digital threats.
Conclusion
Organizations must respond proactively to the information from the OpenText Threat Report and recent MSSP advancements. Staying informed about emerging threats and investing in advanced cybersecurity solutions are crucial steps in safeguarding operations in an increasingly complex threat landscape.
