From January to June 2025, Kaspersky enterprise solutions blocked more than 2 lakh of spyware attacks targeting organisations in India. This is a 273% surge compared to the same period last year.
The global cybersecurity company notes that the stark rise
in targeted spyware attacks rippling through corporate India is a wake-up call
to firms across the country.
Spyware is a type of software, which is secretly installed on a user’s computer to collect their data. Unlike malware, spyware typically does not harm the operating system or programs and files. Runs on the device to monitor activity (e.g., keylogging, screen captures). It can be installed via online means, but its surveillance happens locally.
According to Kaspersky data, there were 29% more attacks on Android smartphone users in the first half of 2025 compared to the first half of 2024, and 48% more compared to the second half of 2024.
A significant number of these attacks continue to exploit unpatched software vulnerabilities, particularly in common products like Microsoft Office. Alarmingly, cybercriminals are also shifting their focus to newer technologies, including low-code platforms.
What are Exploits?
Exploits are malicious programs that take advantage of bugs
or flaws in software or operating systems to gain unauthorized access. When
left unpatched, these vulnerabilities act as open entry points for
cybercriminals. Kaspersky’s findings indicate that many Indian organizations are
still struggling to close these security gaps, making them easy targets for
attackers.
Adrian Hia, Managing Director for Asia Pacific at Kaspersky, highlighted, “An almost 4% rise in exploits we blocked against Indian businesses during the first six months of the year may not sound big on paper, but it shows how persistent these threat actors are. This is where threat intelligence makes all the difference. It tells Indian businesses which doors the criminals are already rattling, so they can lock them before it’s too late.”
JOHANNESBURG, South Africa, June 26, 2025/APO Group/ -- In 2025, nearly 8,500 users from small and medium-sized businesses (SMBs) globally faced cyberattacks where malicious or unwanted software was disguised as popular online productivity tools, Kaspersky reports (www.Kaspersky.co.za). Based on the unique malicious and unwanted files observed, the most common lures included Zoom and Microsoft Office, with newer AI-based services like ChatGPT and DeepSeek being increasingly exploited by attackers. Kaspersky has released threat analysis and mitigation strategies to help SMBs respond.
India witnessed an alarming surge in cyber threats in the
first half of 2025, with Indusface reporting that its AppTrana WAAP platform
blocked over 4.26 billion attacks. This marks a 15% increase compared to the
same period in 2024, with each enterprise website facing an average of 4.1
million attacks. The findings from the company’s State of Application Security
– India H1 2025 Report underline the rising intensity and sophistication of
threats, as attackers increasingly move from high-volume disruption to
precision exploits, often weaponizing zero-day vulnerabilities within days of
discovery. Our insight draws on a range of sources. These include:
The latest telecoms security research by Kaspersky Lab
experts.
Kaspersky Lab monitoring systems, such as the cloud
antivirus platform, Kaspersky Security Network (KSN), our botnet tracking
system and multiple other internal systems including those used to detect and
track sophisticated targeted (advanced persistent threat, APT) attacks and the
corresponding malware.
Underground forums and communities.
Centralized, specialized security monitoring systems (such
as Shodan).
Threat bulletins and attack reports.
Newsfeed aggregation and analysis tools.
By - Aaradhay Sharma
.jpg)
.jpg)
No comments:
Post a Comment