Bitdefender 2025 Cybersecurity Assessment Report: Navigating the New Reality

When asked about the most concerning threats, 51% cited AI-generated threats (e.g., deepfakes, automated malware, malicious code).

Germany reported the highest difficulty with tool complexity at 41%.

20.3% of respondents view AI-powered malware as an extremely significant risk. This concern for AI-powered malware climbs to 25% among senior management, compared to just 15% of middle management.

One in four (25%) flagged compliance navigation as their biggest challenge with security solutions.

In the U.S., 73.8% of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

63.3% believe their organization experienced an attack involving some element of AI within the past 12 months.

28% of respondents cited internal skills shortages as a challenge with current security solutions.

In Singapore, 59% of respondents stated the cybersecurity skills gap within their organization has worsened over the past 12 months.

Singapore reported the highest concern with lack of in-house expertise with tools, at 39%.

50% of professionals in the U.S. and Singapore plan to seek new jobs in the next year.

Over half (57.6%) of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities. This represents a 38% increase compared to Bitdefender’s 2023 report on the same question.

In the U.S., 75% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

In Germany, 51% of respondents stated the cybersecurity skills gap within their organization has worsened over the past 12 months.

In Germany, 48.4% of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

31% of respondents cited tool complexity as a challenge with current security solutions.

In the U.K., 58.1% of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

In Germany, 64% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

45% of C-level executives express being ‘very confident’ in managing cyber risk, whereas only 19% of mid-level managers concur.

41% of C-level executives cite adopting AI tools as their top focus, while 35% of mid-level managers prioritize strengthening cloud security and identity management.

73.5% of respondents in France are concerned about AI-driven attacks.

35% of respondents cited ransomware as a top concerning threat.

51% of respondents consider AI-enhanced social engineering a fairly or extremely significant concern.

37% of respondents cited software vulnerabilities and zero-days as a top concerning threat.

29% of respondents cited extending protection across environments as a challenge with current security solutions.

Over 67% of overall respondents believe AI-driven attacks have increased.

In the U.K., 64%. of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

49% of respondents agree they experience burnout due to the constant need to monitor and respond to evolving cyberthreats.

In Singapore, 75.7% (highest rate of all regions) of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

44.7% of respondents cited phishing/social engineering as a top concerning threat.

67.7% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

In Italy, 69% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

70% of respondents in Singapore are concerned about AI-driven attacks.

49% of respondents state the cybersecurity skills gap within their organization has worsened over the past 12 months.

84% of major attacks now involve legitimate tools already present in the environment (Living-Off-the-Land or LOTL tactics).

71%.of respondents in the US are concerned about AI-driven attacks.

95% of C-level and senior executives believe their organization is effectively managing risk

In Singapore, 71% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

In Italy, 52.8% of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

In the U.S., 63.5% (14% points above the average) of respondents stated the cybersecurity skills gap within their organization has worsened over the past 12 months.

In France, 35.4% (lowest rate) of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

84% of major attacks now involve legitimate tools already present in the environment (Living-Off-the-Land or LOTL tactics).

44.7% of respondents cited phishing/social engineering as a top concerning threat.

37% of respondents cited software vulnerabilities and zero-days as a top concerning threat.

35% of respondents cited ransomware as a top concerning threat.