THE 2025 Kaspersky Compromise Assessment findings highlight key trends in cybersecurity, including the prolonged detection of incidents and the insufficient monitoring practices within organizations. Notably, 30.8% of incidents revealed activities lasting over three months, with 52% of high-severity compromises identified only after 90 days. Factors contributing to detection gaps include the reliance on reactive strategies, communication failures, and the presence of persistent threats in backups.
Kaspersky emphasizes the importance of continuous monitoring and proactive threat hunting to reduce dwell time and improve incident response effectiveness. The report also discusses the prevalence of legitimate tools being misused by threat actors and stresses the need for enhanced vulnerability management practices. Key recommendations for organizations include conducting regular audits, maintaining up-to-date detection systems, and fostering a culture of cybersecurity awareness.