Ransomware, AI & vendor risks drive billions in 2025 breaches

Ransomware, AI & vendor risks drive billions in 2025 breaches New research from Secureframe has identified ransomware, artificial intelligence-powered attacks, and social engineering as the predominant drivers behind the most costly cyberattacks in 2025. Persistent threats The study, which analysed over two years of breach data spanning multiple industries and geographies, found that ransomware continues to top the list of cyber threats. Attackers are increasingly leveraging privilege escalation zero-day vulnerabilities as well as ransomware-as-a-service kits, which has led to a rapid deployment of sophisticated attacks. Social engineering was highlighted as another key vector. Groups such as Scattered Spider have reportedly surged in activity, managing to bypass multi-factor authentication and compromise IT help desks across major airlines and insurance companies. The report stated, "Ransomware remains the #1 threat, with attackers using privilege escalation zero-days and ransomware-a...