The UAE Cyber Security Council and CPX, a leading provider of cyber and physical security solutions, have released the "State of the UAE Cybersecurity Report 2025," highlighting the nation's evolving cyber threat landscape and the urgent need for advanced security measures.
According to the report, over 223,800 assets in the UAE remain exposed to cyber threats, with half of the critical vulnerabilities left unaddressed for over five years. The report underscores the rise of sophisticated cyber-attacks in an AI-driven digital era, necessitating robust defense mechanisms.
Misconfiguration accounts for 32% of cyber incidents, followed by improper usage and unlawful activities at 19%. Government, finance, and energy sectors are the primary targets. In 2024, cybercriminals increasingly used AI-enhanced phishing, web server compromises, and deepfake technology to deceive victims, escalating security concerns.
Economic repercussions remain significant, with the Middle East recording the second-highest data breach costs globally. Additionally, ransomware groups in the UAE surged by 58%, reflecting eCrime’s growing threat. However, there was a significant drop in distributed denial-of-service (DDoS) attacks, from 58,538 in early 2023 to just 2,301 in mid-2024.
Dr. Mohamed Al Kuwaiti, Head of Cyber Security for the UAE Government, emphasized the necessity of international collaboration, innovation, and vigilance to secure the digital future. CPX CEO Hadi Anwar highlighted the UAE’s cybersecurity progress, ensuring that digital transformation aligns with national resilience.
The report also examines the impact of AI-driven cyber threats and state-sponsored advanced persistent threats (APTs). It calls for enhanced defense capabilities and a stronger culture of cybersecurity awareness across all sectors to protect the UAE’s digital landscape.
News Source: Emirates News Agency
