Cyber threats 101

Cyber threats (also known as cybersecurity threats) are events, actions, or circumstances that have the potential to negatively impact an individual or an organization by taking advantage of security vulnerabilities. Cyber threats can affect the confidentiality, integrity, or availability of data, systems, operations, or people’s digital presence.

Cybersecurity threats are constantly evolving, with the rapid adoption of artificial intelligence (AI) further exacerbating their scale and sophistication. Cybersecurity awareness is critical for preventing these threats from turning into full-blown cyber attacks. When security teams are knowledgeable about the different types of cyber threats, they can prevent, detect, and respond more holistically and effectively.

Overview of common cybersecurity threats

Nation states, terrorist groups, criminal organizations, or individual hackers can all be perpetrators of cyber threats. Cybersecurity threats can be:

External (i.e., malicious attack) or internal (i.e., insider threat)
Intentional (i.e., hacking) or accidental (i.e., sensitive data sharing)

In the past, security teams were concerned with simple viruses that infiltrated a computer, causing minor damage. However, today’s world grows ever more interconnected, resulting in widespread implications for cybersecurity threats. Sophisticated attacks like malware, ransomware, and more can grind the operations of multinational enterprises and even entire countries to a halt. Security teams are now tasked with finding vulnerabilities and protecting much larger attack surfaces that encompass distributed systems, Internet of Things (IoT), mobile devices, and other vectors.

Malicious actors design some cyber attacks to steal data, sensitive information, or secrets for financial gain, while others are designed to cause reputational harm for political or personal gains.

While AI lowers the barrier for junior security analysts to investigate and respond to attacks, it does the same for threat actors. With AI, less skilled hackers and cybercriminals can carry out effective and sophisticated attacks at scale, making even more organizations and individuals around the world less safe.

Sources

1. Statista, “Estimated cost of cybercrime worldwide 2018-2029,” 2024.

2. Chainalysis, “35% Year-over-Year Decrease in Ransomware Payments, Less than Half of Recorded Incidents Resulted in Victim Payments,” 2025.

3. Federal Bureau of Investigation, “Internet Crime Report,” 2023.

4. Anti-Phishing Working Group (APWG), “Phishing Activity Trends Report,” 2024.

5. Cybersecurity & Infrastructure Security Agency, “Phishing,” 2023.

The release and timing of any features or functionality described in this post remain at Elastic's sole discretion. Any features or functionality not currently available may not be delivered on time or at all.