The rise of abused Remote Monitoring and Management (RMM) tools and the evolution of AI-driven cybersecurity will define 2025. Experts from Tanium emphasize the need for scalable visibility, automated workflows, and agent-driven AI to combat hidden threats and improve IT resilience.
Melissa Bischoping, Head of Security Research, Tanium
“This year, we’ve seen an increase in the abuse of Remote Monitoring and Management (RMM) tools, which allow threat actors to hide under the cover of legitimate IT traffic. Shadow IT and uncontrolled asset inventory often make it difficult to detect these threats. As legitimate business apps, they also don’t have malware signatures and have usually been signed by trusted code signers. Next year, organizations will address this problem through automated workflows and AI-enabled detection of deviations from baseline installations. Because this is best done at scale, organizations will start to scale their visibility into application control as well. This will allow them to make informed policy decisions and better detect threats. “
Harman Kaur, VP of AI, Tanium
“By 2025, AI in cybersecurity will quickly move from chatbots to a more agent-driven approach. While chatbots offer value, agents represent a paradigm shift. Organizations leveraging automation will use agents for threat detection and autonomous responses. Additionally, agents will improve IT resource scalability and enhance cyber hygiene.”