Ontinue's 2025 H1 Threat Report Warns of Sophisticated Cyber Attacks
Ontinue's Threat Intelligence Report for the first half of 2025 highlights the growing sophistication of cyber threats. It urges businesses to fortify their security measures, as attackers are exploiting vulnerabilities at an unprecedented rate. Cloud environments, particularly Microsoft's Azure, are under siege, with nearly 40% of attacks involving persistent access techniques. Identity-based attacks are also surging, with hackers targeting digital identities or user accounts, often via phishing campaigns.
Phishing remains a significant concern. Dangerous email attachments, including less obvious file formats like SVG or IMG, serve as a primary entry point. Malware via USB removable drives has increased by 27%, making physical access to systems a critical risk factor. Even Multi-Factor Authentication (MFA) is not infallible; in about 20% of cases, stolen tokens are reused, bypassing MFA and password changes.
To counter these threats, Ontinue advises businesses to adopt phishing-resistant authentication methods like FIDO2 or passkeys. Incorporating real threat information into security tests and maintaining basic measures like restricted USB usage and hardened system configurations are also vital. If attackers succeed in blocking security-relevant telemetry data, they remain undetected for an average of over three weeks, emphasizing the need for robust detection measures.
Ransomware continues to be the most prevalent attack method, with over 4,000 cases registered in the first six months of 2025. Despite a decline in ransom payments, its persistence underscores the necessity for businesses to remain vigilant and proactive in their cybersecurity strategies. Ontinue's recommendations provide a solid foundation for businesses to bolster their security posture against evolving threats.
