Contact Us

Cyber Threat Report 2024-2025: What Organisations Need to Know

Cyber Threat Report 2024-2025: What Organisations Need to Know

The cyber threat landscape facing Australia is intensifying.

State-sponsored actors from countries like China and Russia are conducting sophisticated espionage campaigns and positioning for potential attacks on our critical infrastructure. At the same time, ransomware gangs and cybercriminals are relentlessly targeting Australian businesses and individuals, stealing sensitive data and launching wave after wave of attacks.

The Australian Government is responding by expanding the Australian Signals Directorate’s (ASD) capabilities and imposing cyber sanctions on entities facilitating cybercrime.

But government action alone isn’t enough. Protecting Australia requires all of us – businesses, nonprofits, and individuals – to take cybersecurity seriously and build genuine resilience.

The latest ASD Cyber Threat Report gives us a clear picture of what we’re up against and what we can do about it. Here’s what Australian organisations need to know.

The Big Picture

Cyber threats are increasing and getting more expensive. Australia faced over 84,700 cybercrime reports this year, with ASD responding to 1,200+ serious incidents – an 11% increase from last year.

The Financial Reality

Cyber attacks are costing more:

  • Small businesses: $56,600 per incident (up 14%)
  • Medium businesses: $97,200 per incident (up 55%)
  • Large businesses: $202,700 per incident (up 219%)
  • Individuals: $33,000 per incident (up 8%)

Who’s Targeting Australia?

Two main threat groups:

⚠️ State-Sponsored Actors (like China’s APT40)

  • Target government, critical infrastructure, and businesses for espionage
  • Steal sensitive data to support political and military objectives
  • Use “living off the land” techniques that blend with normal network activity
  • Compromise home routers and devices to create botnets

⚠️ Cybercriminals (primarily from Eastern Europe/Russia)

  • Motivated purely by money through ransomware, fraud, and data theft
  • Target anyone → individuals, small businesses, nonprofits, large corporations
  • Use increasingly sophisticated AI-powered attacks

Top Threats Right Now

1. Ransomware → 11% of all incidents, causing extreme disruption and financial loss

2. Identity Fraud → Still the #1 reported cybercrime, up 8%

3. Phishing → Present in 60% of incidents, becoming more convincing with AI

4. DDoS Attacks → Up 280% from last year, disrupting online services

5. Information Stealer Malware → Silently collecting passwords, credentials, and personal data

What Cybercriminals Are Exploiting

Most common entry points:

  • Phishing emails and social engineering
  • Compromised credentials (stolen passwords)
  • Vulnerable edge devices (routers, firewalls, VPNs)
  • Legacy technology that’s no longer supported
  • Unpatched software with known vulnerabilities

The Basics That Still Work

For Everyone (Individuals & Small Businesses):

Use Multi-Factor Authentication (MFA) everywhere possible

Create strong, unique passphrases for every account

Keep software updated → enable automatic updates

Stay alert for phishing → verify before clicking or responding

Back up important data regularly (3-2-1 rule: 3 copies, 2 different media types, 1 offsite)

The 4 Big Moves for Businesses

1. Implement Effective Event Logging → You can’t defend what you can’t see. Proper logging helps detect threats early and reduces incident response costs.

2. Replace Legacy Technology → Outdated systems that no longer receive security updates are prime targets. Replacement is always cheaper than recovering from a breach.

3. Manage Supply Chain Risks → Your vendors and partners can be entry points for attackers. Choose secure, verifiable technologies and manage third-party risks.

4. Prepare for Post-Quantum Cryptography → Quantum computers capable of breaking current encryption are coming. Start planning your transition to post-quantum cryptography now.

Critical Infrastructure at Risk

13% of all incidents targeted critical infrastructure:

  • Financial services (32%)
  • Transport and logistics (26%)
  • Telecommunications (16%)

State-sponsored actors target CI for espionage and to pre-position for potential disruption during crisis or conflict.

The AI Factor

AI is a double-edged sword:

  • Attackers use AI to create convincing phishing emails, automate attacks, and analyse stolen data faster.
  • Defenders use AI for threat detection, behavioural analytics, and automated response.
  • 37% of Australian organisations now list AI as their top cybersecurity budget priority.

Emerging Concerns

⚠️ Quantum Computing Threat

33% of Australian organisations (higher than the global average) are concerned about quantum computers breaking current encryption methods.

⚠️ Information Stealers

Malware that silently harvests credentials and personal data, then sells it to other criminals who use it for further attacks.

⚠️ DDoS Attacks

June 2025 may have had the most DDoS incidents on record. AI-powered botnets are making these attacks easier and more powerful.

The Bottom Line

Cyber threats aren’t going away. They’re evolving and intensifying. But the fundamentals still work: MFA, strong passwords, updated software, backups, and awareness training stop the vast majority of attacks.

The cost of prevention is always less than the cost of recovery. Whether you’re protecting your personal accounts or managing an organisation’s network, taking these basic steps seriously can make the difference between staying safe and becoming another statistic.

Source:
https://tinyurl.com/asdthreatreport

Found this insightful? Share it with your network!

Leave a Reply

Your email address will not be published. Required fields are marked *