Security firm Orange Cyberdefense has released its report Security Navigator 2025, highlighting a dramatic shift in the global cyberthreat landscape over the past year. Sectors that were previously relatively spared—such as healthcare and social services—have become prioritized targets for cybercriminals. At the same time, advances in AI are enabling increasingly sophisticated deepfake campaigns attributed to state-linked actors in China, Russia and Iran.
Healthcare and Social Services – A Growing Target
The report shows cyberattacks against the healthcare and social services sector rose by 50 percent globally during the year, placing the sector among the most affected and marking an alarming trend.
The analysis also notes that cyber extortion directed at small businesses increased by 53 percent. This pattern demonstrates that no organization, regardless of size, is immune from threat actors’ activities.
Rising Attacks on Industry, Commerce and Research
Other notable findings from the report include:
- Manufacturing experienced a 25 percent increase in attacks.
- Attacks against research and technical services rose by 20 percent.
- Retail saw the sharpest increase, with attacks rising by 65 percent.
These figures underscore that organizations across all industries can be targeted by cyberthreats.
AI: A Game-Changer for Threats and Defense
The rise of AI has had a significant impact on the global cyberthreat environment. Threat actors with ties to China, Russia and Iran are leveraging generative AI to produce convincing phishing campaigns and deepfakes, fueling disinformation and eroding trust in governments.
Conversely, AI-driven security systems have improved detection capabilities for threats such as beaconing attacks—where malware sends subtle signals to influence or communicate with servers. AI tools contributed to a 30 percent increase in detected threats over the past year.
Increased Vulnerabilities and the Need for Training
A central conclusion of Security Navigator 2025 is that wider adoption of AI introduces new vulnerabilities for organizations. The report emphasizes that continuous software review and staff training are essential to protect sensitive data and systems.
A Shift in Cybercriminal Attitudes
Peter Larsson, CTO of Orange Cyberdefense, summarizes the evolving threat landscape:
“Sectors that were once relatively protected—such as healthcare—are now popular targets, which reveals attackers’ growing ruthlessness. The use of AI by state-sponsored groups to create effective manipulation campaigns is deeply concerning.”
The increasing complexity and sophistication of cyberthreats highlight the need for organizations and individuals to take their cybersecurity responsibilities seriously.
To strengthen defenses, the report recommends prioritizing regular software maintenance, enhancing staff awareness through targeted training, and deploying advanced detection technologies to identify and mitigate threats early.
Taken together, the trends described in Security Navigator 2025 point to a more hostile and technologically advanced threat environment. Organizations should reassess risk postures, accelerate adoption of AI-based defensive tools, and invest in continuous education to reduce exposure and improve incident response capabilities.
By acknowledging the changing threat landscape and acting proactively, businesses, public-sector entities and individuals can better protect critical systems and sensitive information against increasingly sophisticated cyberattacks.