As we look ahead to 2025 and beyond, the cyber security landscape continues to evolve at an unprecedented pace.
Emerging technologies, expanding regulatory pressures, and the continuing innovation of threat actors are shaping a future where security and resilience are more critical than ever.
Our experts have shared their thoughts on the key topics and trends that will define the years ahead in cyber security. These insights aim to inspire action and preparation as we confront a world of rapid disruption and boundless potential. Whether you’re steering a business, shaping policy, or enhancing personal security, the future is here—and it’s moving fast.
Digital investigations: opportunities and challenges
Alejandro Rivas-Vásquez, SVP of Global Digital Forensics & Incident Response:
In the coming years, digital investigations will face a mix of opportunities and challenges shaped by rapidly advancing technologies.
On the one hand, innovations in fields like Artificial Intelligence (AI) and Machine Learning (ML) and their use cases in Data Analytics offer us significant opportunities to streamline the investigative process. These technologies will continue to improve, allowing both public and private sectors to enhance their capabilities in detecting, responding to, and investigating cyber threats (internal or external), working in combination with human expertise.
However, the same technological advancements that offer new defence opportunities will also be exploited by criminals. A key concern already materialising is the widespread use of deepfakes and automated social engineering tactics, which will likely fuel a dramatic rise in digital fraud and identity theft.
At present, large language models (LLMs) can be exploited by novice hackers to generate malicious code. Proof-of-concept examples already exist that demonstrate how code-assistance technologies can be manipulated to produce similarly harmful outcomes.
These technologies will continue to make it easier for cybercriminals to manipulate and deceive individuals and organisations, creating more complex and harder-to-detect threats. The rise of such malicious tactics will force digital investigators to constantly adapt their methods and tools to counter increasingly sophisticated forms of crime, such as voice fakes, manipulated videos, and automated phishing attacks.
Unfortunately, cyberwarfare capabilities (offensive and defensive) will continue to evolve, and we may encounter NotPetya-like events in the future.
While larger public and private companies will continue to adapt to this curve, small and medium-sized enterprises (SMEs) will face an increasing number of cyber barriers to market entry. As cyber threats evolve, SMEs may struggle to compete in a landscape where the cost of maintaining robust digital defences will continue to rise. For these businesses, sustaining effective digital forensics practices may become increasingly difficult. As a result, the need for external expertise and third-party support in digital investigations will grow.
Ultimately, the evolution of digital forensics frameworks will be another key factor in shaping the future of digital investigations. Over the next few years, these frameworks will move beyond best practices to become globally recognised standards embedded in supply chain compliance and contractual agreements. Organisations, including third parties, will be required to demonstrate their ability to investigate, respond to, and report cyber incidents quickly and effectively. As a result, the need for a more structured, coordinated, and responsive approach to digital forensics will be essential for both preventing and addressing cyber threats.
The next few years will present a double-edged sword: improved digital forensics capabilities, paired with an increased threat landscape, which will require ongoing vigilance, adaptation, and collaboration to manage risks effectively.
Contact
NCC Group Press Office
All media enquires relating to NCC Group plc.