2024 Cyber Retrospective and 2025 Trends: Safeguarding Against Cyberattacks and Staying Ahead
The year 2024 was marked by an unprecedented intensification of cyber threats, illustrating the growing sophistication of attacks and their major impact on businesses and institutions. In France, major retailers, critical infrastructures, and even international events such as the Paris Olympic Games were targeted, highlighting persistent vulnerabilities and the need for more robust defense strategies.
In this complex context, businesses and public organizations faced multiple challenges: responding to increasingly innovative attacks, complying with strengthened European regulations like NIS2 and DORA, and adapting to a constantly evolving digital landscape marked by the rise of artificial intelligence and connected devices.
As 2025 approaches, it promises to be just as demanding. This article provides a retrospective of the key events of 2024 and highlights the major trends to anticipate for the coming year. What lessons can we learn from past incidents? How can we prepare for emerging challenges while navigating a transforming regulatory landscape? Cybersecurity no longer merely responds to threats; it must now be part of a proactive and resilient strategy.
2024 Cyber Market Retrospective
The year 2024 was a pivotal time for cybersecurity in France. With a significant increase in cyberattacks targeting both critical infrastructures, businesses, and citizens, issues related to data protection and information system resilience have never been more crucial.
Major Issues of 2024
Increase in Sophisticated Attacks
In 2024, there was a surge in ransomware attacks, targeted attacks on supply chains, and an increased exploitation of vulnerabilities in third-party software. Cybercriminals adopted increasingly sophisticated techniques, including the use of generative artificial intelligence to automate phishing campaigns and bypass detection systems.
Protection of Critical Infrastructures
Critical infrastructures, particularly in energy, transportation, and healthcare, were prime targets. The threat of attacks disrupting these systems emphasized the need for close cooperation between the government and the private sector.
Digital Sovereignty
France continued to invest in its digital sovereignty, with projects aimed at reducing dependence on foreign solutions, particularly in cloud computing and cybersecurity technologies.
Increased Citizen Awareness
With the rise in online fraud and identity theft, 2024 also saw an intensification of awareness campaigns aimed at protecting citizens from cyber threats.
Significant Cyberattacks
Viamedis and Almerys
In January 2024, a major cyberattack hit healthcare service providers Viamedis and Almerys, compromising the personal data of over 30 million French people. This attack exposed sensitive information, including social security numbers, raising concerns about the protection of medical data in France. It highlighted security flaws in digital infrastructures related to healthcare and the urgent need to strengthen their protection against growing threats.
France Travail (formerly Pôle emploi)
In February 2024, France Travail, newly renamed, was hit by a massive cyberattack that jeopardized the personal information of 43 million users. Exposed data, including addresses and professional information, increased the risk of phishing and identity theft. This event sparked debates about the need for public services to invest more in robust cybersecurity systems to protect citizens.
Paris Olympic Games
The Olympic Games, held in the summer of 2024, were targeted by multiple cyberattacks aimed at ticketing, transportation, and communication systems. While most of these attempts were thwarted thanks to rigorous preparation, they underscored the need for constant vigilance during major international events.
SFR, Boulanger, and Cultura, as well as the “Libération” newspaper
2024 was also marked by cyberattacks affecting various sectors in France. In June, SFR fell victim to an intrusion compromising the data of 1.4 million customers, followed by another attack in August affecting 50,000 more subscribers. In September, Boulanger and Cultura saw the personal data of many customers, including email addresses and phone numbers, leaked after a coordinated attack. Finally, in October, the newspaper “Libération” suffered a ransomware attack that disrupted its operations, although sensitive data of subscribers and journalists was spared. These incidents illustrated the diversity of targets and the impact of current cyber threats.
Trends for 2025
The year 2024 ends in a tense atmosphere politically, economically, and digitally. A series of large-scale cyberattacks have struck major French retailers at an alarming pace. What lessons can we learn to anticipate 2025 and better counter the growing ingenuity of cybercriminals?
With the rise of artificial intelligence, the proliferation of connected devices, and the enforcement of new regulations like NIS2 and DORA, businesses will face major cybersecurity challenges. Identifying key trends and preparing for them will be crucial to securing digital environments in the coming months.
Zero Trust: A Must-Have Approach for Strengthened Cybersecurity
The Zero Trust model is more important than ever as a key strategy for 2025. By requiring strict verification of each user and device, regardless of their location or authorization level, this approach helps limit lateral movement and contain threats in increasingly complex IT environments (hybrid cloud, remote work, BYOD). Businesses will need to invest in strong authentication tools, network segmentation, and identity management, while fostering a security-focused organizational culture.
IoT-Related Threats: A Growing Horizon of Vulnerabilities
With the explosion of connected devices (IoT) in sectors ranging from industry to healthcare to critical infrastructures, the attack surface is expanding significantly. In 2025, cybercriminals will exploit even more the weaknesses of these often poorly secured devices, using specialized malware such as botnets or IoT ransomware. To mitigate these risks, businesses must adopt a security-by-design approach and implement robust encryption and authentication protocols.
Artificial Intelligence: Asset or Threat in the Cyber Fight?
Artificial intelligence will play a key role in 2025, both in strengthening defenses and amplifying attacks. Predictive AI solutions can detect potential threats before they emerge, while attackers use generative AI to create polymorphic malware or refine their phishing campaigns. In this context, businesses will need to rely on ethical AI tools and protect their algorithms from malicious manipulation, while leveraging these technologies to strengthen their defensive posture.
The Human Factor: Still the First Line of Defense
Despite technological advances, humans remain one of the primary targets of cyberattacks. In 2025, social engineering techniques, such as phishing and email compromises (BEC), will continue to proliferate. The key to mitigating these risks lies in ongoing training programs, regular simulations, and greater employee engagement in security best practices. Turning every employee into a vigilant and informed actor will significantly strengthen organizational resilience.
Cybersecurity and Insurance: Increasing Demands
In the face of rising cyber incidents and record indemnities, cyberinsurance premiums have soared. In 2025, insurers will be more demanding about a company’s security posture before granting coverage or setting rates. Organizations will need to conduct thorough audits, invest in risk management solutions, and demonstrate their ability to reduce vulnerabilities. While this evolution may increase financial constraints, it could encourage businesses to adopt stricter security standards.
NIS2 and DORA: A New Regulatory Framework for Digital Resilience
In 2024, the European Union strengthened its regulatory framework with the implementation of the NIS2 and DORA directives, redefining cybersecurity and resilience standards in critical and financial sectors.
NIS2: A Stronger Foundation for Critical Infrastructures
The NIS2 directive broadens its scope to include more critical entities, such as energy, transportation, healthcare, and digital infrastructures. It imposes strict requirements for risk management, incident reporting, and governance. Affected companies must implement robust cybersecurity policies, conduct regular audits, and ensure compliance with harmonized European standards.
In 2025, this directive will push companies to enhance their resilience against growing threats and collaborate closely with authorities to share information on incidents.
DORA: Securing the Financial Sector
The Digital Operational Resilience Act (DORA) specifically targets financial institutions, requiring increased operational digital resilience. In 2025, banks, insurers, and other financial players will need to demonstrate their ability to withstand digital disruptions, including through regular cybersecurity tests and rigorous third-party management.
DORA also imposes clear obligations on essential service providers, such as cloud or IT service vendors, who will be subject to enhanced controls. This framework aims to ensure continuity of financial services in an increasingly interconnected and complex digital environment.
These regulations, while demanding, offer a unique opportunity for businesses to improve their security posture. By integrating the principles of NIS2 and DORA into their strategies, they will not only comply with new legal requirements but also strengthen their resilience against emerging cyber threats.
Conclusion
This retrospective and projections for 2025 clearly show that cybersecurity is more than just a technological issue: it is becoming a strategic, organizational, and regulatory challenge. Rigorous anticipation and targeted investments will be crucial to protect businesses and critical infrastructures in an increasingly interconnected world.
For more information on these trends, check out our webinar on the topic.