LevelBlue, a provider of managed security services, strategic consulting, and threat intelligence, announced the launch of its 2025 Futures Report: Cyber Resilience and Business Impact at the RSAC 2025 Conference. Following the release of the inaugural LevelBlue Futures Report in 2024, this year’s report dives into the characteristics of cyber resilient organizations, evolving attack vectors, and how leaders are aligning business goals and cybersecurity.
As artificial intelligence (AI) brings about excitement and transformative potential, the report reveals that organizations are forging ahead with innovations despite increased security concerns. In fact, just 29 percent of executives surveyed say they are reluctant to implement AI tools and technologies because of cybersecurity ramifications.
Organizations expect AI-powered attacks, such as deepfakes and synthetic identity attacks, to rise in 2025, but many remain unprepared. The LevelBlue Futures Report found that only 29 percent of executives say they are prepared for AI-powered threats, despite nearly half (42 percent) believing they will happen. Additionally, just about one-third (32 percent) believe their organization is prepared for deepfake attacks, even though 44 percent are expecting them. As AI-powered technologies make attacks more sophisticated, 59 percent of executives say that it is becoming more difficult for employees to identify real threats.
“In 2025, AI is forcing organizations to pivot once again,” said Theresa Lanowitz, chief evangelist of LevelBlue. “Our research shows that leaders are becoming more aware of the threats they face, and elevating cyber resilience measures accordingly. However, they still underestimate the potential risk of AI-powered cyberattacks and have extensive work ahead to properly prepare and protect themselves.”
Fortunately, enterprise alignment and awareness of cyber resilience have been a core focus over the past 12 months, with 45 percent of executives saying that cyber resilience is recognized as a whole company priority rather than simply a cybersecurity issue—an increase from 27 percent last year.
Two-thirds (66 percent) of executives say their cybersecurity team is aligned with lines of business, while nearly half (43 percent) of executives within cyber resilient organizations report they are increasing boardroom engagement in resilience-related discussions, compared with 37 percent of executives overall. In turn, 79 percent of cyber-resilient organizations say their adaptive approach to cybersecurity enables their company to take greater risks with innovation.
Additional key findings include:
- 48 percent report needing to get better at defending against AI-powered cyber adversaries
- 41 percent of organizations say they are experiencing a significantly higher volume of attacks
- 61 percent of cyber resilient leaders have allocated a cybersecurity budget to new initiatives from the beginning, compared to 46 percent overall
- 53 percent of cyber resilient organizations are committing significant investment to advanced threat detection
- 68 percent say media reports of high-profile breaches have elevated cybersecurity on the C-suite agenda
The LevelBlue Futures Report recommends four specific steps to best achieve cyber resilience: Push cyber resilience up the organization, embed cybersecurity responsibilities throughout the organization, be proactive (not reactive), and prioritize resilience in the software supply chain.
