GOLD/FOREX
DUBAI 29°C
PRAYER TIMES
UAE
UAE
UAE /
Government

UAE: 223,800 assets ‘exposed’ to cyberattacks as AI-driven attacks rise

Government, finance and energy identified as primary targets for malicious actors

Last updated:
Ashwani Kumar (Chief Reporter)
3 MIN READ
The UAE Cyber Security Council on Tuesday releases the 'State of the UAE Cybersecurity Report 2025.
The UAE Cyber Security Council on Tuesday releases the 'State of the UAE Cybersecurity Report 2025.

Abu Dhabi: More than 223,800 assets hosted in the UAE are potentially exposed to cyberattacks, with half of the critical vulnerabilities remaining unaddressed for over five years, according to a new report.

The UAE Cyber Security Council and CPX, a G42 company and a leading provider of end-to-end cyber and physical security solutions and services, released the ‘State of the UAE Cybersecurity Report 2025’ on Tuesday. The report provides an overview of the unique cybersecurity challenges faced by the UAE, including a surge in AI-powered threats, the sophisticated tactics of cybercriminals, and advanced persistent threats, where state-sponsored actors integrate AI into their attack frameworks. It emphasised the need to enhance the country’s defence capabilities and foster a culture of cybersecurity awareness across all sectors. The report underlined the critical need for advanced cybersecurity measures in response to the increasing complexity and sophistication of cyberattacks.

Stricter vigilance

Dr Mohamed Al Kuwaiti, Head of Cyber Security for the UAE Government, pointed out a surge in AI-powered attacks.

“As we stand on the cusp of a new era powered by emerging technologies, the rise in AI-driven attacks and widening cyber capabilities demand stricter vigilance to secure the future,” Dr Al Kuwaiti said.

Highlighting the urgency of the situation, the attack surface continues to increase. With more than 223,800 assets being potentially exposed to cyberattacks, coupled with the surge in advanced cyberattacks, the report underscored the absolute necessity of robust cyber defences in a region that is at the forefront of AI-driven technological innovation and geopolitical significance.

“The path forward requires international collaboration, innovation, and commitment. Together, we will continue building a secure and prosperous digital UAE, where innovation flourishes, opportunities thrive, and our systems remain resilient in the face of any challenge,” Dr Al Kuwaiti noted.

Second-highest data breach costs

The report examines key trends shaping the cybersecurity challenges, including misconfiguration, which represents 32 per cent of the cyber incidents, followed by improper usage and unlawful activity at 19 per cent. The government, finance, and energy sectors are the most targeted by cyber threat actors.

Last year, drive-by downloads remained a prevalent method for initial entry vectors used by threat actors, with phishing and web server compromises also of concern.

These methods are becoming more sophisticated with the integration of AI tools, enhancing social engineering efforts, phishing lures, and the deployment of deepfake technology to deceive victims. The trend is compounded by the financial repercussions of data breaches, with the Middle East, including the UAE, recording the second-highest data breach costs globally, reflecting the economic targets of cyber threat actors against the backdrop of Gulf prosperity. eCrime also remains a significant threat, with the number of ransomware groups operating in the UAE witnessing 58 per cent growth.

Drastic decrease

On a positive note, from the first half of 2023 to the first half of 2024, the UAE experienced a drastic decrease in distributed denial of service (DDoS) attacks from 58,538 to just 2,301.

Hadi Anwar, CEO at CPX, underlined that the report delves into the strategies, policies, and innovations that are shaping the UAE’s digital transformation while addressing the complexities of protecting critical infrastructure and sensitive data.

“The country’s remarkable progress in cybersecurity reflects a commitment to creating a secure environment where digital advancements and national resilience go hand in hand,” Anwar said.

How to mitigate cyber risks?

Launch cybersecurity awareness and education initiatives

Run regular cybersecurity audits and compliance checks

Create an asset inventory to identify network anomalies

Set up a 24/7 Security Operations Centre for monitoring and analysis

Implement Endpoint Detection and Response (EDR)

Establish a robust cyber threat intelligence function

Develop AI governance frameworks for safe and ethical use of AI

Sign up for the Daily Briefing

Get the latest news and updates straight to your inbox

Up Next

Related Stories

M&S is trying to mitigate the impact of the hack that emerged in April.

M&S resumes online orders after cyberattack disruption

1m read
The UAE Media Council set 20 key standards for media to follow to avoid hefty fines.

UAE Media Law: 20 rules to avoid fines up to Dh1m

3m read
Seated from left to right: Ahmad Halabi, Managing Director of Resecurity; Eng. Ahmed Galal, CEO of Alkan CIT

Resecurity & Alkan CIT forge cyber deal at CAISEC 2025

2m read
Among the vulnerabilities addressed are critical flaws which could allow attackers to gain unauthorized access or disrupt essential digital operations.

UAE Cyber Security Council issues urgent advisory

1m read