SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia

Guides

#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware

Search

Ps sam salehi qualys managing direct anz final 1
#
Ransomware
#
Encryption
#
Advanced Persistent Threat Protection

Nightmare on cyber street: Inside 2025’s scariest cyber threats

Wed, 29th Oct 2025
By Sam Salehi, Managing Director ANZ, Qualys

Every Halloween, the world indulges in fear - haunted houses, horror films and ghost stories. But for cybersecurity leaders, the real horror stories happen in broad daylight, and not just on October 31st.

In 2025, cybercrime has entered a new season of terror. Once-distinct adversaries - state actors, criminal gangs, hacktivists - have merged into an unpredictable ecosystem that moves faster, strikes harder and never sleeps, with AI as the ultimate enabler. Leading this evolution is Scattered Spider, the shapeshifting collective whose tactics have become the blueprint for modern digital crime.

The nightmare of scattered spider

Scattered Spider, also known as UNC3944, first gained notoriety for social-engineering-driven breaches against major global organisations. But what began as a small group of young opportunists has matured into something far more dangerous: a decentralised, AI-fuelled crime ring.

Their ability to infiltrate organisations through human and machine identities alike exemplify the modern threat actor. They blend sophisticated phishing campaigns with deepfake audio, hijacked credentials, and advanced persistent techniques. Their success lies in exploiting and manipulating the weakest perimeter of all: human behaviour.

Even the most security-conscious enterprises are vulnerable when attackers weaponise trust. The group's tactics reveal how a single breach, aided by AI-powered deception, can unravel brand reputation and public confidence overnight.

AI: The criminal's new accomplice

The age of the AI accomplice has arrived. Threat actors are leveraging generative AI models and autonomous agents to research targets, strategise and adapt attacks in real time.

These systems don't tire or hesitate. They learn from each failed attempt, fine-tuning for maximum efficiency. It's no longer about AI generating phishing text - it's about AI running continuous operations, identifying vulnerable endpoints, and scaling deception at industrial speed.

With AI at their side, the barrier between a low-skill amateur and an elite, state-sponsored hacker has effectively vanished, rendering conventional threat models obsolete. A single individual can now deploy ransomware, impersonate employees, or create convincing fake identities across multiple organisations - replicating the impact of a full-scale criminal campaign. This evolution has levelled the playing field and effectively erased the boundary between amateur and nation-state-grade attacker.

That's the true nightmare.

For defenders, this means traditional security models - reactive patching, static monitoring, manual triage - are no longer enough. We are witnessing a paradigm shift that has shattered the traditional landscape of cyber risk. 

Cyber resilience now requires AI-enabled detection, adaptive defence, and organisational governance that extends far beyond the SOC. AI demands that leaders adopt a holistic view of risk. The threat is no longer just external – it has permeated the entire organisation, with risks ranging from AI-simulated employee competence to the unforeseen dangers of your own systems. 

To prepare, leaders must redefine their assets, enhance detection for AI-powered attacks, and expand risk prioritisation to include new and emerging scenarios. Ultimately, security must shift from technical fixes to comprehensive organisational governance for fast-evolving AI threats. 

The quantum countdown

While AI may be today's headline act, the most terrifying cyber threat is quietly unfolding in the background. Adversaries are already harvesting encrypted data in preparation for what experts call "store now, decrypt later" campaigns. Once quantum computers reach sufficient power, every piece of sensitive IP, financial data, and long-term strategy we believe is secure will be  decrypted in days, not decades.

Recent breakthroughs have collapsed the projected timeline. What once seemed 10–15 years away could be reality in less than five. Researchers estimate that a quantum computer could soon break standard RSA-2048 encryption in a single week - a twenty-fold leap in feasibility since 2019.

This makes quantum risk a current crisis, not a future one. The migration to Post-Quantum Cryptography (PQC) is a monumental task that will dwarf Y2K in complexity. It demands a complete inventory of cryptographic dependencies across applications, APIs, and supply chains. Delay is not an option. Leaders must embed crypto-agility into their strategy today, because waiting for a quantum "hello world" is an invitation for a corporate "game over."

The new rules of survival

If 2025 has taught us anything, it's that simply reacting to threats is not a strategy. To survive this new era of cyber risk, organisations must move from reactive defence to continuous, data-driven risk operations. 

The goal is no longer to chase threats one by one, but to understand, anticipate, prioritise, and reduce cyber risk in real time - the foundation of a modern Risk Operations Centre (ROC). The ROC represents a shift from static security to dynamic risk management - a continuous loop of measurement, prioritisation, remediation, and validation that enables CISOs to quantify exposure, report risk in business terms, and drive accountability across IT and leadership. 

By unifying visibility across every asset and identity, quantifying which risks truly matter, operationalising threat intelligence with AI, and automating remediation workflows, security leaders can finally turn cyber defence into business resilience. 

The outcome is a governance model where cyber risk is measured, managed and communicated with the same precision as financial risk - transforming security from a technical function into a strategic advantage.

From fear to foresight

So this Halloween, while others trade ghost stories, CISOs face a different kind of fright - one where the monsters are invisible, tireless, and very real.

But there's a silver lining. The same technologies empowering attackers also hold the key to defending against them. The organisations whose risk decisions are informed by real data and prioritised by business value will transform cyber defence into cyber resilience.

Because the scariest thing about cyber risk isn't the unknown. It's the known - ignored.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Forrester predicts AI errors to cost B2B firms over USD $10 billion
Drata appoints Aneal Vallurupalli as CFO amid global expansion
Ping Identity launches platform to secure & manage AI agents
Gigamon unveils quantum-safe cryptography in GigaVUE update
Barracuda unveils AI assistant to boost security team efficiency

Top stories

Harnessing the power of ICT to propel your enterprise forward: Five key trends you need to be across in 2026
The cybersecurity imperative for smart factories
Fortinet unveils Secure AI Data Centre with 69% power saving
Exclusive: Google on AI-powered attacks & cyber threats in Australia
Hexaware boosts cybersecurity with strategic CyberSolve acquisition