With the growing global interconnection of trade and communications networks, cyberthreats are evolving into a global crisis, warns the 2025 Global Cybersecurity Outlook report. Published by the World Economic Forum in collaboration with Accenture, the Global Cybersecurity Outlook highlights a rapidly escalating landscape of digital risks driven by geopolitical tensions, technological advancements, and systemic vulnerabilities.
Geopolitical disputes have become a key driver of cyberwarfare, with state-sponsored actors targeting critical infrastructure to disrupt economies and destabilise societies. The ongoing conflict in Ukraine, for instance, has revealed the devastating impact of cyberattacks on essential services, including energy and telecommunications. These incidents highlight the urgent need for governments and businesses to bolster defences against such threats.
Nearly 60% of organisations surveyed stated geopolitical dynamics have influenced their cybersecurity strategies. Business leaders cite cyber espionage and operational disruptions as primary concerns, signalling an increased focus on safeguarding sensitive information and ensuring resilience in volatile times.
While emerging technologies like artificial intelligence (AI) and quantum computing hold transformative promise, they also present significant challenges. Cybercriminals are weaponising these tools to enhance the scale and sophistication of their attacks. Generative AI for example, can enable highly personalised phishing schemes, making it increasingly more difficult for organisations to identify and mitigate threats.
Despite these risks, the report reveals a concerning gap: only 37% of organisations have the appropriate processes in place to evaluate the security of AI systems prior to deployment. Experts emphasise the growing importance of integrating cybersecurity into the adoption of new technologies to mitigate potential vulnerabilities before they can be exploited.
The complexity of modern supply chains has emerged as a critical vulnerability, with 54% of large organisations identifying third-party risks as a major challenge. Software flaws introduced by suppliers, inadequate oversight, and dependence on a few key providers create systemic risks that can ripple across industries.
Global initiatives like the EU Cyber Resilience Act aim to address these vulnerabilities by enforcing stricter regulations on suppliers. However, implementing these measures across intricate, multi-tiered supply chains remains a daunting task.
The commoditisation of cybercrime is further fuelling a rapid expansion. Cybercrime-as-a-Service (CaaS) platforms offer ready-made tools for ransomware, phishing, and other attacks, enabling even non-technical actors to wreak havoc. The convergence of traditional organised crime with digital operations adds an additional layer of risk and complexity, amplifying the social and economic impacts of these threats.
The report calls for a united front to address the evolving cyberthreat landscape. Key recommendations include enhancing public-private partnerships, investing in cybersecurity talent, and fostering international cooperation to combat cybercrime.
“Cybersecurity is no longer just an IT issue,” said Jeremy Jurgens, Managing Director of the World Economic Forum. “It’s a business, social, and geopolitical challenge. Organizations must act now to build resilient systems and protect against an increasingly complex array of threats.”
As digitalisation continues to reshape the global economy, the stakes have never been higher. The ability to navigate this challenging landscape will define not just the success of businesses but also the security of nations in the years to come.