HPE Threat Labs Report: Cyber Attackers Accelerating Attacks by Scaling Business Models

[Erkan Teskancan]

## HPE Threat Labs Report: Cyber Attackers Accelerate Attacks by Scaling Business Models

A new report published by HPE Threat Labs reveals significant changes in the global cyber threat landscape. It shows that cybercrime has reached an industrial scale, with malicious actors rapidly scaling their attacks using automation and old vulnerabilities.

Analyzing live threat activities worldwide throughout 2025, HPE found that cyber attackers are launching repeated attacks against high-value targets, and defense mechanisms are struggling to keep up. Government agencies, finance, and technology sectors were among the primary targets.

### HPE Threat Labs Research and Findings

• 1,186 active threat campaigns were observed globally in 2025.
• Attackers operate with professional organizational structures, automation, and strategic targeting.
• Government agencies were the most attacked sector with 274 campaigns, followed by the finance and technology sectors with 211 and 179 campaigns, respectively.
• Critical infrastructures, sensitive data, and sectors linked to economic stability were identified as priority targets.
• Over 147,000 malicious domains, approximately 58,000 malicious files, and 549 vulnerabilities were actively exploited throughout the year.

### Automation and AI Accelerating Attacks

• Attackers instantly exfiltrated stolen data using automated workflows on platforms like Telegram.
• Generative AI technologies were used for targeted video phishing and executive impersonations with fake voices and videos.
• Some attacker groups optimized their infiltration strategies by researching VPN vulnerabilities.

### Practical Steps to Strengthen Cyber Resilience

• Share threat intelligence across organizations, with customers, and within industries.
• Update common entry points like VPNs, SharePoint, and endpoint devices, and implement zero-trust principles.
• Continuously verify users and devices with the help of ZTNA.
• Utilize AI-based systems and deception technologies in threat detection and response processes.
• Implement security measures that extend beyond corporate boundaries to include home networks, third-party tools, and supply chains.

### Importance of HPE Threat Labs for the Industry

HPE Threat Labs combines the robust infrastructure of HPE and Juniper Networks to enrich threat intelligence and focuses on developing products that detect and prevent real-world attacks. This new report provides crucial guidance for cybersecurity leaders looking to develop strong defense strategies against large-scale and organized attackers.

The data used in the report is compiled from worldwide honeypot networks, telemetry data from customers, and open sources. Data within the scope of the report was analyzed throughout 2025.

The detailed report and the contributions of HPE Threat Labs to the industry are critically important for faster response and resilient security infrastructures.