Agentic AI Will Revolutionize Cybercrime in 2025 According to New Report

Malwarebytes, a provider in real-time cyber protection, recently released its 2025 State of Malware report, which reveals insight into the emergence of agentic artificial intelligence (AI), plus the year’s most prominent threats and cybercrime tactics. The report details a significant uptick in the number of known ransomware attacks, the total value of ransoms paid in 2024, and how IT teams can address them.

“Our research shows that ransomware will continue to be a potent threat to businesses this year,” said Marcin Kleczynski, Founder and CEO, Malwarebytes. “The shift from large ransomware groups to smaller, unpredictable threat actors, combined with the increasing role of AI, means businesses must increase their cybersecurity vigilance and make holistic endpoint security a priority.”

Emerging agentic AI models—which can reason, plan, and act autonomously—will further revolutionize cybercriminal tactics, making attacks more scalable and efficient in 2025. Just as businesses are beginning to explore AI for productivity and security, cybercriminals are leveraging it to improve phishing campaigns, evade detection, and fine-tune attacks. This marks a turning point: the arms race between AI-powered attackers and AI-enhanced cybersecurity tools is rapidly escalating, forcing businesses to rethink traditional defense strategies. With AI rapidly evolving, security teams must integrate AI-driven threat detection and response to keep up and counteract the increasing speed and sophistication of AI-driven cyberattacks.

Known ransomware attacks increased by 13% year-over-year, despite two of the most prominent ransomware groups, LockBit and ALPHV, losing their supremacy. This can be attributed to the rise of smaller, less well-known “dark horse” ransomware gangs posing threats to small and medium-sized businesses. Additionally, 2024 saw the largest known ransomware payment ever recorded when an unknown victim paid $75 million into a crypto wallet.

“If 2024 has taught us anything, it’s that ransomware purveyors aren’t resting on their laurels,” said Lee Wei, SVP, Customer & Product, Corporate Unit at Malwarebytes. “The full attack cycle has gone from weeks to hours and in some cases minutes. Organizations need eyes on their endpoints 24/7 to stay on top of threats and that often means deploying managed services, like Managed Detection and Response (MDR) that can assist teams in filling the gaps.” To read the full report, visit http://threatdown.com/2025-State-of-Malware.

Featured

  • Unlocking the Possibilities

    Security needs continue to evolve and end users are under pressure to address emerging risks and safety concerns. For many, that focus starts with upgrading perimeter openings and layering technologies—beginning at the door. Read Now

  • Freedom of Choice

    In today's security landscape, we are witnessing a fundamental transformation in how organizations manage digital evidence. Law enforcement agencies, campus security teams, and large facility operators face increasingly complex challenges with expanding video data, tightening budget constraints and inflexible systems that limit innovation. Read Now

  • Accelerating a Pathway

    There is a new trend touting the transformational qualities of AI’s ability to deliver actionable data and predictive analysis that in many instances, seems to be a bit of an overpromise. The reality is that very few solutions in the cyber-physical security (CPS) space live up to this high expectation with the one exception being the new generation of Physical Identity and Access Management (PIAM) software – herein recategorized as PIAM+. Read Now

  • Protecting Your Zones

    It is game day. You can feel the crowd’s energy. In the parking lot. At the gate. In the stadium. On the concourse. Fans are eager to party. Food and merchandise vendors ready themselves for the rush. Read Now

  • Street Smarts

    The ongoing acceptance of AI and advanced data analytics has allowed surveillance camera technology to shift from being a tactical tool to a strategic business solution. Combining traditional surveillance technology with AI-based data-driven insights can streamline transportation systems, enhance traffic management, improve situational awareness, optimize resource allocation and streamline emergency response procedures. Read Now

New Products

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • ResponderLink

    ResponderLink

    Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols.