Unveiled at the RSAC™ Conference, the 2025 LevelBlue Futures Report finds only 29% of executives are prepared for AI-powered threats, despite nearly half believing they will happen
SAN FRANCISCO–(BUSINESS WIRE)–RSAC Conference 2025 – LevelBlue, a leading provider of managed security services, strategic consulting, and threat intelligence, today announced the launch of its 2025 Futures Report: Cyber Resilience and Business Impact at the RSAC™ Conference. Following the release of the inaugural LevelBlue Futures Report in 2024, this year’s report dives into the characteristics of cyber resilient organizations, evolving attack vectors, and how leaders are aligning business goals and cybersecurity.
As artificial intelligence (AI) brings about excitement and transformative potential, the report reveals that organizations are forging ahead with innovations despite increased security concerns. In fact, just 29% of executives surveyed say they are reluctant to implement AI tools and technologies because of cybersecurity ramifications.
Organizations expect AI-powered attacks, such as deepfakes and synthetic identity attacks, to rise in 2025, but many remain unprepared. The LevelBlue Futures Report found that only 29% of executives say they are prepared for AI-powered threats, despite nearly half (42%) believing they will happen. Additionally, just about one-third (32%) believe their organization is prepared for deepfake attacks, even though 44% are expecting them. As AI-powered technologies make attacks more sophisticated, 59% of executives say that it is becoming more difficult for employees to identify real threats.
“In 2025, AI is forcing organizations to pivot once again,” said Theresa Lanowitz, Chief Evangelist of LevelBlue. “Our research shows that leaders are becoming more aware of the threats they face, and elevating cyber resilience measures accordingly. However, they still underestimate the potential risk of AI-powered cyberattacks and have extensive work ahead to properly prepare and protect themselves.”
Fortunately, enterprise alignment and awareness of cyber resilience have been a core focus over the past 12 months, with 45% of executives saying that cyber resilience is recognized as a whole company priority rather than simply a cybersecurity issue—an increase from 27% last year. Two-thirds (66%) of executives say their cybersecurity team is aligned with lines of business, while nearly half (43%) of executives within cyber resilient organizations report they are increasing boardroom engagement in resilience-related discussions, compared with 37% of executives overall. In turn, 79% of cyber-resilient organizations say their adaptive approach to cybersecurity enables their company to take greater risks with innovation.
Additional key findings include:
- 48% report needing to get better at defending against AI-powered cyber adversaries
- 41% of organizations say they are experiencing a significantly higher volume of attacks
- 61% of cyber resilient leaders have allocated a cybersecurity budget to new initiatives from the beginning, compared to 46% overall
- 53% of cyber resilient organizations are committing significant investment to advanced threat detection
- 68% say media reports of high-profile breaches have elevated cybersecurity on the C-suite agenda
The LevelBlue Futures Report recommends four specific steps to best achieve cyber resilience: Push cyber resilience up the organization, embed cybersecurity responsibilities throughout the organization, be proactive (not reactive), and prioritize resilience in the software supply chain.
Download the complete findings of the 2025 LevelBlue Futures Report here to learn how businesses can prepare for more sophisticated and human-centric attacks and achieve greater cyber resilience in the future.
For more information on LevelBlue and its managed security, consulting, and threat intelligence services, please visit www.levelblue.com.
Methodology
The research is based on a quantitative survey that was carried out by FT Longitude in January 2025. There were a total of 1,500 C-suite and senior executives surveyed, across 14 countries and seven industries: energy and utilities, financial services, healthcare, manufacturing, retail, transportation, and US SLED (state, local government, and higher education). To be counted as a cyber resilient organization, respondents must have met the qualifications listed under “Five Characteristics of a Cyber Resilient Organization.”
About LevelBlue
We simplify cybersecurity through award-winning managed services, experienced strategic consulting, threat intelligence, and renowned research. Our team is a seamless extension of yours, providing transparency and visibility into security posture and continuously working to strengthen it.
We harness security data from numerous sources and enrich it with artificial intelligence to deliver real-time threat intelligence- this enables more accurate and precise decision making. With a large, always-on global presence, LevelBlue sets the standard for cybersecurity today and tomorrow. We easily and effectively manage risks so you can focus on your business.
Welcome to LevelBlue. Cybersecurity. Simplified. Learn more at www.levelblue.com.
Contacts
Media Contact
Jessica Bettencourt
Inkhouse for LevelBlue
[email protected]
(774) 451-5142
