Cyber risk in 2025: an increasingly tense landscape
The year 2025 confirms a trend that has been observed for several years: cyber incidents are more frequent, more costly and more difficult to manage. Significant losses continue to rise sharply, and all companies, whatever their size, are now affected.
Dattak observes these trends through the analysis of thousands of cyber signals and policyholder feedback. Here are the key figures to bear in mind.
Ransomware and fraud: the two dominant threats
Ransomware remains the main scourge at the start of this year. The frequency of ransomware attacks remains high, and their operational impact is massive, not least because of the full encryption of critical systems.
At the same time, there has been a significant increase in the number of frauds, such as president's fraud, payment embezzlement and complex scams based on social engineering or identity theft.
The professionalization of attackers plays a major role: - more sophisticated techniques, - more credible scenarios, - massive exploitation of data exposed on the dark web, - AI tools used to personalize scams.
Human error remains the main point of entry
Despite the rise of defense technologies, the primary vector of intrusion remains human error. Common causes include
- absence or incorrect configuration of the MFA
- clicking on a malicious link during a phishing campaign,
- poor password management,
- overly permissive access sharing.
In second place come unpatched vulnerabilities, the consequence of irregular patching or obsolete tools. A known, unpatched vulnerability remains one of the most exploited entry points.
Average cost and downtime: an operational reality
The median length of interruption following an attack is now eight days, across all company sizes. This figure confirms that cyber attacks are not just a technical issue, but also a major business challenge.
The average cost of an incident is around 20,000 euros, with significant variations depending on :
- business sector,
- sales figures,
- the scale of the attack,
- the company's cyber maturity,
- backup quality.
Some companies exceed several hundred thousand euros when the attack affects production, ERP or payment systems.
Major cost items
Losses observed show a now well-identified cost structure:
- Business interruption, which often accounts for the lion's share of the bill.
- Direct costs of the attack, including forensic analysis and technical remediation.
- Crisis management, including communication, RGPD notification if necessary, and legal support.
- IT system rebuilding, sometimes very costly when the infrastructure has to be reinstalled or hardened.
These trends show the importance not only of appropriate cyber coverage, but also of upstream preparation.
How to reduce the duration and cost of an incident
The best-prepared companies are those that most effectively limit the impact of an attack. The following practices are decisive
- widespread use of MFA on all sensitive access points,
- regular patching of infrastructures and software,
- regularly tested,disconnected backups,
- continuous detection and response capability,
- crisis drills to train teams.
These best practices can turn an eight-day interruption into a few hours in some cases. They also have a direct impact on insurance conditions and coverage capacity.
Conclusion
The year 2025 confirms that cyber risk is no longer an abstract threat. It is an economic, operational and regulatory challenge, driven by an ever-increasing level of attack.
Companies need to strengthen their practices, modernize their security and rely on cyber insurance that can be activated in the event of a crisis. At Dattak, we analyze these trends on a daily basis and adapt our solutions to meet the needs of the field.
To find out more about our analyses and protection solutions, visit www.dattak.io. Cyber risk is the number 1 risk for any company, whatever its size.