CrowdStrike’s 2025 Global Threat Report highlights a sharp increase in cyber activity linked to China, alongside a rising adoption of GenAI and escalating attacks on cloud infrastructure. The report delivers a stark warning to business leaders: underestimating adversaries comes at a significant cost.<\/p>\n
<\/p>\n
Threat actors are evolving, becoming more sophisticated and methodical, leveraging advanced technologies like AI and machine learning not only to bolster their attacks but to commodify these tools for cybercriminal networks.<\/p>\n
<\/p>\n
GenAI, for instance, is now widely exploited by state-sponsored actors, eCrime groups, and hacktivists. They weaponize commonly used enterprise tools \u2014 like chatbots \u2014 to execute highly effective social engineering campaigns.<\/p>\n
<\/p>\n
Among nation-states in particular, China\u2013nexus activity has surged by 150% overall, says CrowdStrike \u2013 one of many rapidly growing threats businesses must work hard to stay ahead of by reinforcing and fortifying their cybersecurity postures as we move through 2025.<\/p>\n
<\/p>\n
China’s Cyber Expansion<\/strong><\/span><\/p>\n <\/p>\n CrowdStrike reveals a significant escalation in China-linked cyber operations, with state-sponsored attacks increasing by 150%. Targeted intrusions into sectors like finance, media, manufacturing, and industry spiked by as much as 300%.<\/p>\n <\/p>\n The research identified seven new China-linked advanced persistent threat (APT) groups in 2024, five of which displayed unique, highly specialized tactics. This evolution signals a shift from the so-called “smash-and-grab” attacks to highly targeted, mission-driven intrusions.<\/p>\n <\/p>\n \u201cChina\u2019s increasingly aggressive cyber espionage, combined with the rapid weaponisation of AI-powered deception, is forcing organisations to rethink their approach to security,\u201d says Adam Meyers, head of counter-adversary operations at CrowdStrike.<\/p><\/blockquote>\n <\/p>\n \u201cAdversaries exploit identity gaps, leverage social engineering and move across domains undetected\u2014rendering legacy defences ineffective. Stopping breaches requires a unified platform powered by real-time intelligence and threat hunting, correlating identity, cloud and endpoint activity to eliminate the blind spots where adversaries hide.\u201d<\/p><\/blockquote>\n <\/p>\n Multi-faceted threat landscape<\/span><\/strong><\/p>\n <\/p>\n Beyond nation-state activity, CrowdStrike’s findings reveal growing vulnerabilities in cloud environments. Unattributed cloud intrusions rose by 26% in 2024, with attackers exploiting valid credentials to gain internal access and move laterally within systems. Misconfigurations, weak access controls, and cloud infrastructure flaws remain prime entry points.<\/p>\n <\/p>\n Identity-based attacks surged as well, with 75% of breaches now malware-free. Adversaries increasingly leverage stolen credentials to impersonate legitimate users, navigating networks undetected. Underground forums saw a 20% increase in the trade of valid credentials, while AI-fueled phishing and voice scams surged by 442%.<\/p>\n <\/p>\n GenAI Accelerating Attack Speed<\/span><\/strong><\/p>\n <\/p>\n Attackers are moving faster than ever. CrowdStrike reports that the average breakout time \u2014 the window before adversaries start lateral movement \u2014 dropped to just 48 minutes in 2025, with the fastest observed time at 51 seconds.<\/p>\n <\/p>\n GenAI played a pivotal role in this acceleration. Notable examples include fake IT job candidates infiltrating companies and AI-powered disinformation campaigns orchestrated by Chinese, Russian, and Iranian groups to disrupt elections.<\/p>\n <\/p>\n Preparing for 2025 and Beyond<\/span><\/strong><\/p>\n <\/p>\n In light of these evolving threats, business leaders must adopt a proactive, holistic approach to cybersecurity. This includes:<\/p>\n <\/p>\n <\/p>\n CrowdStrike\u2019s 2025 Threat Report makes one thing clear: the cyber threat landscape is more dynamic than ever, and organizations must stay vigilant to outpace increasingly adaptive adversaries.<\/p>\n <\/p>\n\n