Kaspersky Reveals Cyber Threats In 2025: Ransomware, Data Theft, And New Attacks

Illustration of financial cyberattacks (photo: Kaspersky)

JAKARTA - In Kaspersky Security Bulletin's report: crimeware and financial cyberthreats in 2025, company experts share their vision of the evolution of the financial cybersecurity landscape by 2025.

In 2024, according to Kaspersky's anonymous telemetry, the number of users affected by the cellular financial threat increased by 145% in India compared to 2023. This trend is expected to continue in 2025.

In addition, Kaspersky predicts more progress in ransomware techniques. First, ransomware will secretly manipulate or enter incorrect data into the database, and not only encrypt data.

Second, advanced ransomware groups will start using post-quantum cryptography as quantum computing develops. This encryption technique is designed to withstand decryption attempts from classical and quantum computers, making it almost impossible for victims to decrypt their data.

Third, ransomware-as-a-service is projected to grow, less experienced threat actors will be able to launch advanced attacks with a kit as cheap as 40 US dollars (Rp. 640 thousand), increasing the number of incidents.

Popular thieves groups, such as Lumma, Vidar, Redline, and others survive to fight pressure from law enforcement, will adapt, and adopt new techniques. New players will also emerge.

Other important predictions include:

Attacks on the Central Bank and Open Banking initiatives. This will be an attack on the instant payment system run by the central bank, and as a result cybercriminals can gain access to sensitive data.

Increased supply chain attacks on open source projects. After the XZ backdoor incident, the open source community is likely to reveal efforts for new and backdoor attacks that have previously been successfully implanted.

More AI and machine learning on the defense/law enforcement side. We will see more and more AI adopted in cyber defense to accelerate anomaly detection, reduce the analysis time through predictive capabilities, automate response measures, and strengthen policies to counter emerging threats.

The emergence of new blockchain-based threats. As a result, the new malware developed using this unclear protocol will be distributed and used for various purposes.