Cyber Threat Overview 2025

Following a 2024 marked by the exceptional nature and resounding success of the organisation and staging of the Paris 2024 Olympic and Paralympic Games, it would be easy to believe that the pressure created by cyber attackers in the wake of the event has subsided: this is far from the case.

In 2025, the French Cybersecurity Agency (ANSSI) notes that the level of cyber threat remains high, spares no one, and is the work of attackers who are becoming increasingly difficult to track. The boundaries between state actors and cybercriminals are blurring. Attackers are specialising but share tools and methods; they exploit weaknesses in poorly monitored products or equipment; they make loud – and not always sincere – claims, or hide silently to prepare future actions whose unknown objectives should collectively alarm us.

In short, whilst it has always been complex to attribute a cyberattack to a particular modus operandi or group of attackers, it is now equally difficult to detect and make sense of their traces hidden within the general complexity of digital environments.