Cybercriminals Reduce Network Lateral Movement Time to 29 Minutes in 2025

In 2025, cybercriminals reduced the average time required to move from initial network compromise to lateral movement across systems to just 29 minutes. The finding comes from an analysis of threat activity conducted by CrowdStrike, which highlighted the accelerated pace of attacker operations. No specific vulnerabilities (e.g., CVE IDs) or targeted industries were mentioned in the report. The data reflects a broader trend of increasingly rapid post-exploitation tactics by threat actors. The report did not specify geographic regions or attack vectors involved.