Talos and Splunk Release 2025 Threat Landscape Report Highlighting Ransomware‑as‑a‑Service Growth and Legacy Vulnerabilities
What Happened — Cisco Talos and Splunk jointly published a 2025 Year‑in‑Review report that distills telemetry, research, and incident‑response data into the top 50 cybersecurity threats of the year. The discussion emphasizes the professionalization of ransomware‑as‑a‑service (RaaS) and the continued exploitation of decade‑old vulnerabilities.
Why It Matters for TPRM —
- RaaS commoditization expands the pool of potential attackers targeting third‑party vendors.
- Persistent legacy flaws indicate that many suppliers still lack robust patch‑management processes.
- The report provides a data‑driven roadmap for prioritizing controls across the supply chain.
Who Is Affected — Enterprises across all sectors that rely on third‑party software, cloud services, and managed service providers; especially those with legacy on‑premise assets.
Recommended Actions — Review vendor security assessments for RaaS exposure, validate patch‑management and vulnerability‑remediation programs, and align your threat‑modeling with the top 50 trends identified.
Technical Notes — The briefing cites a surge in ransomware‑as‑a‑service kits, increased phishing‑based initial access, and exploitation of CVE‑2015‑1635 (HTTP.sys) and CVE‑2017‑0144 (EternalBlue) still observed in 2025. No new CVEs are disclosed. Source: Cisco Talos Blog