1、The State of Cybercrime 2025Emerging Threats&PredictionsFebruary,20252Executive SummaryIn 2024,the cyber threat landscape became more complex.Threat actors became increasingly diversified,forming alliances and using methods that blurred traditional distinctions between cybercriminals,hacktivists,and
2、 state-sponsored groups.Underground economies,from malware-as-a-service(MaaS)to stolen credential marketplaces,contributed to a powerful infrastructure supporting a range of malicious activities.The expanding digital attack surface,driven by the rapid adoption of artificial intelligence(AI)and suppl
3、y-chain interdependencies,introduced new vulnerabilities.Geopolitical tensions further exacerbated cyber risks,with state-sponsored actors leveraging cyber operations to achieve strategic objectives.Nation-state actors,including Russia,China,Iran,and North Korea,remained active in espionage and infl
4、uence aligned with their geopolitical interests.In this report,KELA highlights notable threats of 2024,alongside predictions and countermeasures for the evolving threat landscape of 2025.I hope it provides you with useful insights and a deeper understanding of the evolving cyber threat landscape.Our
5、 goal is to equip you with the intelligence needed to stay ahead of emerging risks.The State of Cybercrime 2025Chief Executive Officer,KELAInfostealers as a Persistent ThreatInfostealers serve as precursors to advanced attacks,including ransomware and espionage.KELA observed over 4.3 million machine
6、s infected globally by infostealer malware,accounting for more than 330 million compromised credentials.KELA has also observed 3.9 billion credentials shared in the form of credentials lists that appear to be sourced from infostealer logs.The top three infostealer malware strains-Lumma,StealC,and Re