The emergence of agentic AI—AI models capable of reasoning, planning, and executing tasks autonomously
Cybersecurity firm Malwarebytes has released its 2025 State of Malware report, shedding light on the evolving landscape of cyber threats, the rise of agentic artificial intelligence (AI) in cybercrime, and an alarming increase in ransomware attacks. The report highlights how AI is reshaping attack strategies, making cybercrime more efficient, scalable, and difficult to detect.
AI: Game Changer In Cybercrime
The emergence of agentic AI—AI models capable of reasoning, planning, and executing tasks autonomously—is proving to be a double-edged sword. While businesses are integrating AI into productivity and security tools, cybercriminals are also leveraging these advancements to refine phishing campaigns, evade detection, and automate attacks.
“The shift from large ransomware groups to smaller, unpredictable threat actors, combined with the increasing role of AI, means businesses must increase their cybersecurity vigilance and make holistic endpoint security a priority,” said Marcin Kleczynski, Founder and CEO of Malwarebytes.
This new AI-driven threat landscape has escalated the arms race between cyber attackers and security experts. Organisations must rethink traditional defence strategies by integrating AI-powered threat detection and response to keep pace with the rapidly evolving nature of cyberattacks.
Ransomware On Rise: 2024’s Record-Breaking Payout
The report reveals that known ransomware attacks increased by 13 per cent year-over-year, even as two of the most notorious ransomware groups, LockBit and ALPHV, lost their dominance. This surge is attributed to the rise of smaller, lesser-known ransomware gangs, which have turned their focus towards small and medium-sized businesses.
One of the most shocking findings in the report is that 2024 saw the largest ransomware payment ever recorded—$75 million paid by an unidentified victim into a crypto wallet.
“If 2024 has taught us anything, it’s that ransomware purveyors aren’t resting on their laurels,” said Lee Wei, SVP, Customer & Product, Corporate Unit at Malwarebytes. “The full attack cycle has gone from weeks to hours, and in some cases, minutes. Organisations need eyes on their endpoints 24/7 to stay on top of threats, and that often means deploying Managed Detection and Response (MDR) services that can assist teams in filling the gaps.”
Call For Stronger Cybersecurity Measures
With cybercriminals evolving their tactics, the time-to-attack is shrinking dramatically. Malwarebytes’ findings suggest that businesses must move beyond reactive security measures and adopt proactive, AI-driven defences.
The report underscores the urgent need for organisations to monitor endpoints around the clock, invest in managed security services, and strengthen their cybersecurity posture against increasingly sophisticated AI-powered cyber threats. As ransomware attacks continue to rise, businesses must adapt swiftly or risk becoming the next major victim in an ever-escalating digital battlefield.
