The latest report from CrowdStrike reveals a dramatic surge in cyber attacks, with the average eCrime breakout time decreasing to just 29 minutes in 2025, reflecting a 65% increase in speed compared to the previous year. The fastest breakout recorded was an astonishing 27 seconds, with some instances of data exfiltration starting within four minutes of initial access.
AI tools have emerged as a key resource for cybercriminals, used for both reconnaissance and evading detection. Activity linked to AI-enabled adversaries saw an 89% annual increase, with a notable rise in discussions about mainstream AI tools in criminal forums. Mentions of ChatGPT alone surged by 550% compared to other models.
CrowdStrike is actively monitoring 281 nation-state and eCrime groups, having identified 24 new adversaries this year. Incidents involving fake CAPTCHA lures skyrocketed by 563%, while spam email attacks increased by 141%. Notably, state-sponsored activities from China rose by 38%, particularly targeting the logistics sector, which itself saw an 85% increase in attacks.
Operations linked to North Korea have also intensified, with the group FAMOUS CHOLLIMA more than doubling their activities. Additionally, the report highlights a significant cryptocurrency theft, attributed to the PRESSURE CHOLLIMA group, totaling USD $1.46 billion.