Cybersecurity in 2025

Cybersecurity is becoming one of the most crucial priorities for organizations around the world. The complexity of supply chains, geopolitical instability and the rapid adoption of artificial intelligence are presenting businesses with new and increasingly sophisticated threats. While cyber risks are evolving at an unprecedented rate, many executives are realizing that the resilience of their organizations depends not only on technology, but also on the ability to adapt to an ever-changing environment. This article presents some of the most serious cybersecurity challenges.

• Supply chain vulnerabilities – a major cyber security risk

More and more organizations see threats related to suppliers and partners as the biggest challenge to ensuring cyber resilience. More than half of large companies (54%) cite supply chain vulnerabilities specifically as a critical issue. The main reasons for this are its increasing complexity, lack of control over external partner security and the potential for attacks to spread throughout the ecosystem.

• Geopolitical tensions impact cyber strategies

Nearly 60% of companies say global political instability has forced changes in their cybersecurity strategies. Organization leaders are increasingly concerned about risks such as cyber espionage and the theft of sensitive or intellectual information. Almost half of cyber experts worry about potential disruptions to business processes.

• The entry of artificial intelligence (AI) creates new risks

While two-thirds of organizations expect AI to have a major impact on cybersecurity in the near future, only 37% have implemented adequate procedures to vet the security of AI solutions before using them. This shows a clear disconnect between awareness of AI-related threats and actual measures to protect against them.

• Generative AI facilitates cybercrime

With the use of generative AI, there has been a rise in social engineering and phishing attacks. 72% of organizations surveyed report increased risks, and ransomware attacks remain among the top threats. In 2024, attacks based on deception and employee manipulation are particularly on the rise.

• Regulations help, but their heterogeneity creates difficulties

While legislation is recognised as a means to strengthen cyber security, a lack of consistency across jurisdictions makes it difficult to implement. More than three-quarters of chief security officers say that disparate requirements make it difficult to comply with rules in an international context.

• Serious shortage of qualified personnel in cyber security

The shortage of experts in the field continues to worsen – with an 8% increase in 2024. Two-thirds of organizations report significant skills gaps, and only 14% believe they have the staff they need to adequately protect against cyber threats.

TPA Bulgaria

+359 2 981 66 45/46/47

office@tpa-group.bg

128, G.S. Rakovski str, floor 2

1000 Sofia