Staying informed about the latest trends in cybersecurity threats is crucial for both professionals and organizations. Here are some of the most significant trends and insights from Redditors in the cybersecurity community:

Rise of AI-Enabled Threats

• AI-Enabled Hacking Attacks: By the end of 2026, most hacking attacks are predicted to be AI-enabled. "Most hacking attacks are AI-enabled by end of 2026!"

• AI-Based Phishing and Deepfakes: There is a rise in AI-based phishing, deepfake, and other identity-based threats. "Rise in AI-based phishing, deepfake and other identity based threats"

Phishing and Ransomware Evolution

• Phishing-as-a-Service (PhaaS): This has exploded, making it easier for bad actors to launch convincing attacks. "Phishing-as-a-Service (PhaaS) exploded in 2025"

• Ransomware Tactics: Ransomware groups are using new techniques, such as weaponizing remote management tools and exploiting ghost accounts. "Ransomware groups kept up the pressure and tested new techniques"

Insider Threats and Supply Chain Attacks

• Insider Risks due to Gen AI: The rise in insider risks is attributed to the use of generative AI. "Rise in insider risks due to Gen AI"

• Supply Chain Attacks: These remain a significant concern, especially with the involvement of nation-state actors. "Supply-chain attacks (especially North Korea)"

Quantum Computing and Q-Day

• Q-Day Predictions: There is debate over whether Q-Day, the day when quantum computers can break current encryption, will happen by 2026. "Q-Day happens in 2026!"

Staying Current in Cybersecurity

• Continuous Learning: Many professionals emphasize the importance of continuous learning through blogs, podcasts, and forums. "Follow a bunch of security folk on Mastodon"

• Practical Experience: Hands-on experience and practical application of knowledge are key to staying current. "Set up your own instance of OpenCTI or MISSP"

Additional Resources

• Threat Intelligence Sources: Recommendations include DFIR Report, Team Cymrus’ Dragon News Bytes, and Google Threat Intel/Mandiant. "DFIR Report"

• Educational Platforms: Courses and training from Recorded Future, Mandiant Academy, and MITRE ATT&CK are highly recommended. "Some free CTI courses that look promising"

For more detailed discussions and up-to-date information, consider visiting these subreddits:

• r/cybersecurity

• r/threatintel

• r/devsecops