Akamai Technologies has launched its report «Defenders’ Guide 2025: strengthens its defenses for the future», an innovative document that offers practical research and news on risk scores, VPN abuse and advanced malware techniques. This report, part of the Internet status (Soti), is designed to help companies reinforce their cybersecurity strategy. In addition, it is especially relevant to the CISO, since it presents an exhaustive security framework with proactive measures based on the results of the studies.
«This guide serves to remind the Ciso of the importance of research in their cybersecurity strategies. By having innovative technical analysis about attacks and integrating this information into their processes, technologies and equipment, organizations can correctly mitigate the risks of this digital, more and more complex panorama. All this allows better investments in security, reduce the risk of expensive incidents and, ultimately, reduce costs, ”says Francisco Arnau, regional vice president of Akamai for Spain and Portugal.
Outstanding aspects of the Security Guide 2025
In the highlights of the report is a new risk score model that quantifies the vulnerabilities of an organization according to the importance of the application, the complexity of the network and the probability of safety risks. Recommendations include impact analysis on terminals, segmentation strategies and methods to mitigate internal and external risks.
The report also addresses the metamorphosis of malware, highlighting advanced techniques such as peer-to-peer architecture and fileless malware, used by botnets such as NOABOT and Redotail. Concrete actions are recommended to mitigate these threats, such as patches management and employee training.
Defenders Guide 2025: Strengthen its defenses for the future
In addition, new research on VPN abuse reveals vulnerabilities in VPN devices that are being exploited by advanced attackers. Proposed solutions include the adoption of light access protocols to directories (LDAP) Insurance, the realization of custom encryptions and the firmware update.
As for the network architecture, the report underlines the need to implement layers defenses to address vulnerabilities in the processing of information introduced by users, as highlighted in the research filter research of sites (XSS). Likewise, the analysis of six vulnerabilities of kubernettes between 2023 and 2024 exposes the risks of command injection attacks, recommending the proactive use of patches and the surveillance of the environments contained against emerging threats.
A practical tool for cybersecurity defenders
The “Defenders’ Guide 2025” is not only aimed at security directors and other responsible, but also those who battle in the front line against cyber threats. «Reports on large cyber -oriented guides to security directors and other responsible are usually published. And they are good reports, but it is also important that those who battle in the front line have specific orientations. This guide is exactly that, and is the first in the sector. It is a complete and unified tool that includes the new findings and recommended practices to go one step ahead of emerging threats, ”says Francisco Arnau.
