Blogs
The Big Question: Are businesses now in the front line for cyberwarfare?
After the recent cyberattacks on the US Treasury, which was blamed by the US on Chinese state-backed hackers, the growing threat of cyberattack shows no signs of decreasing.
Businesses of all sizes are now targets for cyber criminals, be it ransomware attacks or seeking to access major corporations for data or intellectual property.
However, there are growing fears that the coming year will see a rise in the number of cyberattacks by nation states amid concerns of a rise in cyberwarfare as growing geopolitical tensions see such attacks shifting from national infrastructure to business and technology targets.
In a keynote speech last year, the Director of GCHQ that the Chinese state poses a “genuine and increasing” cyber risk for the UK.
Anne Keast-Butler said that the Chinese Communist Party’s cyber capabilities are “world-class”, and it intends to use them to achieve its national goals.
She said: “We see the Chinese state acting in an increasingly assertive fashion on the world stage… The UK’s intelligence community is working alongside our allies and in partnership with our industry and academic colleagues to combat and deter cyber threats from nation states and hostile actors.”
Ian Summers, Global Business Leader, AdvantageGo.
Nadir Izrael, CTO, at Armis says the year ahead may well be remembered as the year when cyberwarfare impacts not only nations but organisations and businesses globally.
“As we begin 2025, the notion of warfare is increasingly shifting from the physical to the digital domain,” he explains. “Cyberwarfare, once considered a supplementary tool for traditional military operations, has now emerged as a primary weapon for nations seeking to assert dominance or inflict damage on their adversaries without the need for physical conflict.
“Simply put, it is easier, requires fewer resources, and can often cause maximum damage without sustained efforts. The rise of AI-driven cyber weapons, zero-day vulnerabilities, and state-sponsored cyberattacks is creating an unprecedented era of digital warfare.”
Izrael adds that state backed attacks are sure to increase in the months ahead.
“Nation-states and rogue factions are rapidly integrating cyberattacks into their military arsenals, with cyber operations becoming a first-strike option in geopolitical conflicts,” he explains. “By targeting critical infrastructure -such as energy grids, communication networks, transportation systems, and supply chains – these attacks can cripple an entire national infrastructure and create mass chaos without a single physical shot being fired. This shift toward cyberwarfare reduces the immediate risk of physical casualties, and in turn allows state actors to engage in asymmetric warfare, where a smaller, technologically advanced nation can punch well above its weight.
“In 2025, we expect to see an escalation in state-sponsored cyberattacks aimed at creating widespread disruption and psychological stress. These attacks will be characterised by increased sophistication, as governments turn to advanced technologies, including AI-driven malware, to outmanoeuvre their targets.”
Izrael continues artificial intelligence is transforming the offensive capabilities of cyber actors.
“The next generation of cyber weapons will be powered by machine learning algorithms that allow them to autonomously learn, adapt, and evolve,” he explains. “AI-driven malware, for example, will be capable of dynamically changing its code to evade detection, bypassing even the most advanced security measures.
“These AI-powered tools will be especially dangerous because they can automate much of the work currently done by human operators. The combination of speed, intelligence, and adaptability makes AI-driven cyber weapons harder to defend against and far more destructive. In 2025, we may see AI-designed attacks that overwhelm cybersecurity teams by generating thousands of variants of malware or exploiting zero-day vulnerabilities faster than defenders can respond.”
“The distinctions between military and civilian infrastructure are rapidly blurring in the cyber domain. Hospitals, water utilities, transportation networks, and even personal smart devices have become prime targets for cyberattacks,” Izrael adds. “In 2025, the civilian infrastructure is expected to be on the frontlines of cyberwarfare. The risks posed to civilians – whether through disruption of essential services or direct harm via compromised healthcare systems – are no longer secondary concerns in cyberwarfare, but key objectives.
“Ransomware has evolved from a financial windfall for cybercriminals to a political weapon for nation-states. These attacks will target sectors critical to national security, including healthcare, transportation, and finance, pushing cybersecurity even further to the forefront of national defense priorities.
“As cyberattacks become more frequent and targeted, the potential for significant collateral damage increases, complicating efforts to maintain societal resilience. The question we must ask is: how can we protect our most vulnerable infrastructures from the fallout of digital warfare?”
The increasingly blurred lines between military and civilian targets underscore the need for a holistic approach to security, he says a “single-pane-of-glass” strategy – one that consolidates security insights from diverse inputs like source code, misconfigurations, and vulnerabilities – will become essential to navigating the complexities of cyberwarfare in 2025.
“Unified security management platforms that integrate early warning intelligence and risk prioritisation across an enterprise’s entire infrastructure will be the cornerstone of cyber defense strategies,” Izrael adds. “By offering a clear, comprehensive view of security vulnerabilities, risks, and threats, organisations can make more informed decisions and mitigate risks before they materialise into full-scale attacks.”
Izrael adds: “In 2025, vulnerability management will expand beyond traditional vulnerabilities. Organisations will need to consider security gaps, such as compliance failures, misconfigurations, and operational blind spots, as integral parts of their defense strategy. Adopting a broader vulnerability management framework that captures the full spectrum of security risks, along with AI-based alarm deduplication, prioritisation, assignment, and mitigation, will be critical in maintaining resilience in the face of evolving cyber threats.”
He continues the proliferation of Internet of Things (IoT) devices introduces an alarming attack surface for cyber actors.
“From smart homes to autonomous vehicles, medical devices, and industrial IoT systems, connected devices are vulnerable to large-scale attacks that could cause physical damage or disrupt critical services. We expect to see the weaponisation of IoT devices in 2025, with cyberattacks targeting everything from individual households to nationwide infrastructures.
“For instance, a well-coordinated attack on smart energy meters could cause massive power outages. Likewise, attacks on autonomous transportation systems could lead to chaos in major cities. As more devices come online, the potential for destructive IoT-based cyberattacks will increase exponentially.”
Izrael concludes: “As we head toward 2025, state-sponsored chaos, AI-driven weaponry, and the blurred lines between civilian and military targets will define the cyber domain. To defend against these rising threats, we must adopt holistic security strategies that identify and prioritise risk across the entire digital ecosystem.
“Equally important will be fostering international collaboration, as cyberwarfare knows no borders, and the only way forward is through collective defence. The time to act is now, as the stakes have never been higher.”