End of the Year Threat Intelligence Report 2025
Unlock this whitepaper
Geopolitics heavily influenced cyberspace
The year 2025 marked a significant escalation in global geopolitical tensions, driving increased polarization and directly shaping the cyber threat landscape. Financially motivated cybercrime surged, with ransomware growing 42% worldwide. Even though Europe’s relative share of victims decreased, the total number of global victims nearly tripled, reaching almost 8,000 published cases on extortion sites.
Geopolitics heavily influenced cyberspace. Strained relations between the US and Europe – driven by tariff disputes, NATO pressures, and shifting alliances – coincided with deepening cooperation between China, Russia, Iran, and North Korea. This bloc supported Russia’s war effort through energy, drone technology, and even troop deployment, fueling continued instability.
Europe’s strong dependence on US-based cloud, AI, and cybersecurity technologies remains a strategic vulnerability. With around 90% of European cloud workloads running on US‑owned infrastructure, EU leaders are accelerating plans toward greater technological sovereignty.
If current trends continue, 2026 may see up to 12,000 ransomware victims disclosed globally, especially as threat actors adopt more advanced AI-driven capabilities.
While AI offers major opportunities for innovation, it introduces new attack surfaces, such as AI-enabled browsers – that require heightened attention to security and privacy.
In this rapidly shifting threat environment, situational awareness has never been more crucial. The pace of change in cyber risks is measured in days, not months.
NetNordic’s Threat Intelligence Team’s End of Year 2025 Report provides essential insights to help organizations understand these developments and prepare for what lies ahead.
Stay ahead of the evolving cyber threat landscape!
Download the full NetNordic End of Year 2025 Threat Intelligence Report to equip your organization with the insights, data, and foresight needed to make informed security decisions in 2026. Fill in the form above to get immediate access and strengthen your situational awareness today.
Cyber Defence Services
NetNordic’s Cyber Defence Services provide continuous protection for business‑critical operations through a unified combination of 24/7 monitoring, intelligence‑driven defence, and expert incident response. Our service portfolio covers Managed Detection & Response (MDR), Threat Intelligence, and Tier 3 Cyber Security Consulting—each with dedicated service owners to ensure clear accountability and operational excellence. Organizations gain full visibility across endpoints, networks, identities, cloud and OT environments, strengthened incident readiness, and a security posture aligned with NIS2 and ISO27001 requirements.
Security Operations CenterThreat Intelligence
Our Threat Intelligence service helps organizations stay ahead of emerging risks through proactive monitoring, early warning signals, and deep insight into evolving adversary behaviours. By combining intelligence‑led defence with Dark Web monitoring and continuous vulnerability insights, we help customers minimize breach impact, optimize security investments, and ensure regulatory compliance. NetNordic’s intelligence capabilities enhance SOC operations by enabling faster detection, sharper prioritization, and a more resilient overall security posture.
Threat IntelligenceContent subjects category
Content type
Related content
Contact Us
Feel free to call us directly on our telephone number +47 67 247 365, send us an email salg@netnordic.no, or fill in the form and we will get back to you as soon as possible! Thanks!
