The Cyber Landscape 2020–2025: From Pandemic Shock to AI-Driven Threats

The Cyber Landscape 2020–2025: From Pandemic Shock to AI-Driven Threats

In just five years, cybersecurity has been fundamentally transformed. The pandemic in 2020 became the starting point for a digital leap. Companies shifted to remote work overnight, cloud services grew explosively, and cybercriminals adapted instantly. Suddenly, both defenders and attackers were playing on an entirely new field.

Since then, threats have become more numerous and advanced. What began with ransomware and phishing has evolved into supply chain intrusions, attacks on critical infrastructure and assaults where AI plays a central role. Organizations around the world have realized that cybersecurity is not only a technical issue but also a strategic management concern that involves human behavior.

The World Economic Forum notes in its Global Cybersecurity Outlook 2025 that cybersecurity is now one of the biggest global risks, on par with climate change and geopolitical instability.

2020: The pandemic’s digital leap

When the world shut down in 2020, work moved to kitchen tables and living rooms. Home networks became part of companies’ attack surfaces.

According to Check Point Research and Interpol, the traditional security perimeter dissolved at the same time as the use of cloud services exploded, which dramatically increased risks. Cybercriminals saw an opportunity: phishing emails about COVID tests and vaccines spread in large numbers.

Several sources show that malware attacks rose significantly during the year. Some reports, such as AAG IT, indicate an increase of over 350 percent, but this is difficult to verify. More established measurements point to increases of around 50 percent in certain categories.

2021: Cloud and supply chains in focus

At the end of 2020, the SolarWinds attack was discovered, but it was during 2021 that the consequences became clear. The incident showed how a single supplier could affect organizations worldwide.

The Verizon Data Breach Investigations Report described how intrusions were increasingly carried out with malware-free methods. Instead of malicious code, attackers used stolen login credentials and exploited existing system functions.

Other reports, including those from Tenable and Verizon, also highlighted the rapidly growing problem of misconfigured cloud services.

2022: Ransomware at scale

Ransomware surged in 2022. SonicWall registered 236 million attempts during the first six months of the year. These were attempts, not successful breaches.

Many attacks targeted hospitals, government agencies and industries. ENISA and Verizon DBIR noted at the same time that data leaks and attacks on APIs were increasing.

The costs of breaches rose quickly, fueling rapid growth in the cyber insurance market, particularly highlighted by Allianz and Marsh.

2023: Social engineering at the center

In 2023, social engineering became the biggest threat. According to DBIR, about three out of four breaches were malware-free, relying on phishing, vishing and smishing.

ENISA and Kaspersky reported that IoT and edge devices became more frequent targets. To address these threats, organizations invested in zero trust architecture and automation.

Proofpoint’s Voice of the CISO report showed how economic pressures and lack of resources left many organizations more vulnerable to cybercrime.

2024: Critical infrastructure under attack

In 2024, many advanced attacks targeted critical infrastructure.

Dragos reported in its annual ICS/OT Cybersecurity Year in Review that the water and energy sectors were particularly affected, often with suspected state support.

The World Economic Forum noted that it became increasingly common for attackers to combine ransomware with data theft and attempts at geopolitical influence.

At the same time, regulatory pressure increased and more industries developed joint incident response plans.


2025: AI for better and worse

Today, in 2025, AI is at the center. Generative AI is being used to create increasingly sophisticated attacks such as deepfakes and automated phishing, but also to strengthen defense through AI-driven detection and response.

Proofpoint reports that 84 percent of CISOs are worried about their personal liability in the event of a breach, showing that the issue is now firmly on the leadership agenda.

The World Economic Forum points out that human factors are the most common cause of breaches, often in the form of mistakes or poor routines in identity management. This is driving investments in training, simulations and strategies to strengthen the human firewall.

Cloud, identity and critical infrastructure remain the most common targets for attacks, according to reports from ENISA and Microsoft Security.

From perimeter to people and beyond

The development between 2020 and 2025 shows a clear shift. The focus has moved from malware attacks and collapsing network perimeters to a reality where AI, identities and human factors dominate the threat landscape.

And the journey continues. ENISA predicts that threats leading up to 2030 will become even more complex. AI-driven systems may map vulnerabilities in real time, and quantum technology could eventually threaten today’s encryption.

The World Economic Forum also highlights cybersecurity as an increasingly important geopolitical factor. Attacks are used both to make money and to destabilize societies. Therefore, collaboration between countries, authorities and companies will be critical for building digital resilience.

For organizations, this means cybersecurity must be treated as a central strategic issue. It is not enough to build walls around networks. The strength lies in the ability to quickly detect, respond and recover. Training, exercises and investments in competence are just as important as the latest technology.

What began as a reaction to the pandemic has become a long-term transformation. The future of cyber defense is about trust, resilience and the ability to adapt in a world where digital risks are a permanent part of everyday life.

Work at HiQ

Get in touch!

Choose your nearest office, looking forward to hear from you!

Läs fler artiklar här

insight Meet Laura Vantellini, HiQ’s new Managing Director in Germany 
insight Digitalization, AI and the Future of Sweden – A Conversation with Minister for Civil Affairs Erik Slottner
insight Customer data is the new gold – and hackers are already digging
insight Quantum Computers and Cybersecurity – From Future Threat to Strategic Reality
insight New Report Shows How We Use ChatGPT: Like Buying an iPhone and Only Using the Flashlight
insight From Crisis to Insight: Building a More Secure Digital Public Sector
insight AI sets a new standard for banks’ fraud prevention
insight When Nature Strikes: How AI Can Protect the Energy System from the Next Crisis
insight AI makes Jira the developer’s new assistant
insight Only Five Percent Succeed with AI – How to Avoid Being Among the Losers
insight From Frozen Firmware to Adaptive Intelligence: Embedded Software Is Changing the Game
insight Edge AI: Intelligence Moving into the Systems
insight Digital Resilience – The Next Competitive Advantage
insight From Docker to Kubernetes – The Story of How We Build the Next Generation of Digital Ecosystems
insight The 11 Hottest AI Agents of 2025 – and How They’re Already Transforming Business
insight AI Experiences from a Developer’s Everyday Life – How to Use AI for Coding
insight From Data to Agency: Navigating the AI Maturity Path to Agentic Systems
insight What Does “Developer Experience” Really Mean – and Why Should the Business Side Care?
insight The Future of Development: What State of Software 2025 Reveals About Tomorrow’s Tech Roles
insight From Model Year to Always Up-to-Date – How Software Is Redefining the Car’s Lifecycle
insight AI in the Power Grid – From Vision to Real-World Application
insight Efficiency Without Shortcuts – How to Get More Out of Every Step in the Development Cycle
insight Interview with Ashkan Fardost: Why We Must Understand Technology as Something Deeply Human
insight Towards a Data-Driven Future: Falu Energi & Vatten’s Strategic Journey
insight Confident in Swedish – A Language Initiative that Builds Courage and Connection
insight Java on Cloud Terms – Best Practices for AWS, Azure, and GCP
insight Building a Tech Industry Where Everyone Feels at Home
insight Spring Boot, Quarkus or Micronaut? Your Guide Through the Java Framework Jungle
insight AI – The Manufacturing Industry’s Shield Against the New Reality of Trade Tariffs?
insight How to Build Change-Resilient Teams – with Annika R Malmberg on Tech Royale
insight Vibecoding vs. DevOps: The Future of Software Development in the AI Era?  
insight From Threads to Thousands – How Virtual Threads Are Transforming Java Development
insight How Companies Can Implement the POUR Principles in Their Digital Strategy Ahead of the EAA
insight Everything You Need to Know About Digital Accessibility Before June 2025
insight How Young Professionals Can Prepare for the Future of DevOps
insight Why CxOs Should Care About the Future of DevOps
insight The Trends Shaping DevOps in 2025
insight “We Must Prepare for an Increasingly Complex Threat Landscape”
insight DeepSeek and the AI Arms Race – What Does It Mean for Sweden?
insight Unlearning for DevOps Teams: A Key Skill for the Future
insight DevOps and AI: Building Systems That Learn and Adapt
insight Insights on Leadership and Partnerships in Tech with Simona Bamerlind
insight How to Lead a Tech-Forward Organization – Insights from Ledarlabbet
insight Understanding CRA: A Path to Competitive Advantage
insight Figma’s Dev Mode: A Hands-on Guide
insight Exploring AI, Cybersecurity, and the Future of Intelligence with Staffan Truvé
insight How to Avoid Common AI Project Pitfalls
insight Cybersecurity in Focus This October: How We Can Create a Safer Digital Society
insight Understanding PSD3 and PSR: Why They Matter and What You Need to Know
insight Open Banking and the API Economy: Drivers of New Innovation in Finance
insight The Swedish Financial Infrastructure from a Tech Perspective
insight Five Keys to IT and Tech-Driven Innovation – Insights from Radar Talk
insight The Rise of Autonomous Vehicles: Revolutionizing Transportation
insight AI and Sustainability: Opportunities, Challenges, and the Way Forward
insight AI – From Data to Business Decisions 
insight How HiQ Helps You and Your Business
insight What Happens if Your Software Fails?
insight Skip Projects & Pi in Software Development
insight Four Expert Tips on Business Value with GAI
insight How well do we really understand children’s digital preferences?
insight Mastering Industrial IoT
insight NIS2 – Not Just for Critical Functions
insight Navigating the AI Revolution
insight Unlocking Your Data Goldmine
insight AI Adoption in Nordic Energy and Manufacturing
insight Emerging AI Infrastructure
insight The Nordic AI Race