In 2025, critical infrastructure organizations around the world have faced a wave of cyber threats driven by espionage- or sabotage-motivated threat actors, financially motivated ransomware groups, and ideologically driven hacktivists—and it’s only getting more dangerous. Our threat intelligence team at PwC expects 2026 to be defined by stealthier, persistent, and identity-centric cyber operations, often connected to real-world geopolitical and ideological conflicts.
Adversaries increasingly “log in” rather than “break in,” meaning they exploit legitimate accounts and authentication processes to gain access. Advances in AI and increasingly accessible attack tools are lowering the bar for threat actors to conduct covert, widespread campaigns. Cyber leaders understand that managing risk isn’t enough anymore, that they should build security from the ground up.
Read the full blog by PwC, a Health-ISAC Champion. Click Here
