Fortinet’s 2025 Cyberthreat Predictions Report highlights a shift toward more ambitious, sophisticated, and destructive cyber attack strategies in 2025.

“2025 is expected to usher in a new wave of specialised and AI-driven attacks,” Jess Ng, country head of Singapore and Brunei at Fortinet, warned.
Fortinet foresees a future where malicious actors will increasingly harness the power of AI or LLMs to fuel theCybercrime-as-a-Service (CaaS) market. This could lead to a proliferation of dangerous offerings such as phishing kits, Ransomware-as-a-Service, DDoS-as-a-service, and more.
Emerging threat trends
Beyond the use of AI in driving more sophisticated attacks, Fortinet expects more attack chain expertise to emerge. In 2025 and beyond, CaaS groups will become more specialised, with many groups providing offerings targeting just one segment of the attack chain.
Cloud environments will also become vulnerable to cyberattacks, with organisations relying on multiple cloud providers.
Fortinet also predicts cybercriminals will execute cyberattacks combined with physical, real-life threats. More sophisticated playbooks can involve transnational crimes such as drug trafficking, smuggling of people or goods, and more.
Enhancing collective resilience
Despite the escalating threats, Fortinet predicts that anti-adversary frameworks will expand. The cybersecurity community must unite in global collaborations, forge public-private partnerships, and develop robust frameworks against cybercrime.
“These trends reflect how threat actors are continually pushing the envelope as they strive to carry out more precise and large-scale attacks. Our predictions underscore the need for organisations to remain vigilant in staying ahead of the ever-evolving cyber threat landscape,” said Ng.
Fortinet recommends industry-wide efforts to combat the increasing sophistication of cyberattacks, reminding that cybersecurity is a collaborative effort.