HPE Report Reveals Cyberattacks Organized Like Businesses

HPE Report Reveals Cyberattacks Organized Like Businesses

First seen 17 Mar 2026, 23:57 UTC Itbrief.Co.NzSecuritybrief.AuFeeds2.FeedburnerInfosecurity-MagazineSecuritybrief.Asia 87% similarity 69.5

Article Content

Browse articles
ThreatCluster

HPE has published a report detailing 1,186 active cyberattack campaigns observed in 2025, indicating that adversaries are increasingly structuring their operations like large businesses. Government organizations were the most targeted, with 274 campaigns, followed by finance (211) and technology (179). The report highlights the exploitation of long-standing vulnerabilities and the rapid pace at which attackers operate, often outpacing incident response teams. HPE Threat Labs recorded over 147,000 malicious domains and nearly 58,000 malware files, with 549 vulnerabilities actively exploited. The report emphasizes the use of automation in data exfiltration and the role of generative AI in social engineering, particularly through deepfakes. It calls for improved coordination and visibility among defenders to combat these evolving threats.

Key Points: • HPE's report covers 1,186 active cyberattack campaigns from 2025. • Government organizations were the most targeted sector with 274 campaigns. • Attackers increasingly use automation and generative AI for sophisticated attacks.

ThreatCluster AI

Timeline

2025-01-01
HPE Threat Labs began tracking cyberattack activity for the year.
2025-12-31
HPE completed analysis of 1,186 active campaigns.
2026-03-17
HPE published the 'In the Wild' report on cyberattack activity.

Community

Browse all →