TracWrap: John Hammond, 2025 cybersecurity predictions, Salt Typhoon, upcoming events, and more
This week’s TrapWrap recap:
In the News
Salt Typhoon Exposed: A Deep Dive Into a State-Sponsored Cyber Threat
Salt Typhoon is a suspected Chinese state-sponsored hacking group linked to the Chinese Ministry of State Security (MSS), primarily targeting government officials, political figures, and individuals with strategic value. Their cyber espionage efforts focus on infiltrating major telecommunications networks to intercept sensitive communications and gather intelligence. Using advanced persistent threat (APT) tactics, they exploit known vulnerabilities in VPNs, firewalls, and cloud infrastructure to gain access, deploy custom malware, and maintain long-term persistence while avoiding detection. Their sophisticated methods, including credential theft, lateral movement, and encrypted data exfiltration, pose significant risks to national security, corporate intellectual property, and critical infrastructure. Despite exposure and sanctions, Salt Typhoon continues to evolve, exploiting vulnerabilities in Cisco routers, Microsoft Exchange, and various firewall solutions to expand their reach.
To mitigate the threat posed by Salt Typhoon and similar cyber adversaries, individuals and organizations should implement robust cybersecurity measures. Using end-to-end encryption (E2EE) for messaging, email, and cloud storage helps secure sensitive communications, while multi-factor authentication (MFA) and strong password management prevent unauthorized access. Organizations should adopt a zero-trust security model, enforce strict network segmentation, and deploy AI-driven threat detection tools. Regular software updates and patching are essential to close security gaps, along with conducting penetration testing to identify vulnerabilities. Employees should receive security awareness training to recognize phishing attempts and suspicious activity. Additionally, collaboration between government and private sectors is crucial for real-time threat intelligence sharing and proactive defense strategies against state-sponsored cyber threats.
Employee Insights
Navigating the Cybersecurity Landscape in 2025: A Preview of Transformational Trends and Predictions
Daniel DeCloss , Founder and CTO at PlexTrac, predicts that 2025 will be a transformative year for cybersecurity, driven by a shift toward proactive and threat-focused defense strategies. Organizations will move beyond traditional vulnerability management to Exposure Management, assessing not just weaknesses but also the likelihood and impact of exploitation. Continuous Threat Exposure Management (CTEM) will take center stage, emphasizing continuous testing, risk-based prioritization, and proactive security measures to stay ahead of evolving threats. AI will play a dual role—enhancing security with automated threat detection and response while also becoming a prime target for attacks like data poisoning and adversarial manipulation. Additionally, cyber insurance will become a major force in shaping security strategies, as insurers demand greater transparency, proactive risk mitigation, and stricter compliance for coverage eligibility.
The cybersecurity landscape will also see threat intelligence shifting from reactive to offensive, enabling organizations to disrupt attackers before they strike. Service providers will increasingly adopt threat simulations to test and strengthen defenses, while compliance frameworks will evolve to focus on real-world threats rather than just regulatory checkboxes. The rapid growth of IoT devices will significantly expand the attack surface, requiring stronger security measures to protect against breaches. Ultimately, DeCloss emphasizes that organizations must embrace continuous, risk-driven security strategies to stay resilient against the increasingly sophisticated cyber threats of 2025.
Read his full predictions report: https://plextrac.com/whitepaper/2025-transformational-trends-predictions-cybersecurity/
Company Highlights
OnDemand Webinar | Offensive Security Tips and Trends for 2025 with NVIDIA and PlexTrac
Have you made your cybersecurity resolutions for 2025? The key to making progress is leaning into a proactive security strategy. Join offensive security experts Tyler Robinson Offensive Capability Lead at 英伟达 , and PlexTrac’s Founder and CTO, Dan DeCloss, for predictions and advice on setting proactive security priorities for the coming year while improving pentest reporting time, collaboration, and report quality.
Upcoming Podcast | Friends Friday: Why One Report Isn’t Enough
Join Dan DeCloss (PlexTrac) & Ryan Wilson (ECS Tech) for a discussion on:
Upcoming Podcast | Shared Security Podcast Series
This March, watch for Dahvid Schloss and Dan DeCloss on the Shared Security podcast with Snyk 's Tom Eston . The trio will be unpacking the challenges of wrangling unwieldy vulnerability data from across systems, turning it into actionable insights, and managing remediation workflows across teams. You’ll walk away with tips and best practices from the front lines of offensive security.
Where to Find Us
Cloud & Cyber Security Expo?
March 12 -13? | EXCEL, London?
Future Con
March 20 | Las Angeles, CA?
Cyphercon?
April 3 - 4 | Milwaukee, WI
RSA
April 28 - May 1 | San Francisco, CA?
Community Spotlight:
John Hammond Features PlexTrac on Social Media
“Previously I shared a lab environment to practice an internal penetration testing scenario – and that made for a perfect case study to build out a pentest report! To speed up and streamline writing a pentest report, I used PlexTrac and its collaborative platform to easily add assets, findings, remediation details – everything! So you can spend less time reporting, and more time hacking” - John Hammond via LinkedIn