JAKARTA - More than one million online banking accounts were hacked by information thieves (infostealer) last year, as financial cyber threats are now shifting towards credential theft and data reuse.
Kaspersky's latest report reveals that attackers are now increasingly relying on social engineering, phishing, and the dark web market. Financial phishing still dominates. Fake pages that mimic online stores reached 48.5 percent in 2025 or an increase of 10.3 percent compared to the previous year.
Meanwhile, attacks targeting banks were at 26.1 percent or down 16.5 percent, while payment systems reached 25.5 percent or up 6.2 percent compared to last year.
The decline in banking phishing is considered to show that bank services are increasingly difficult to forge, so perpetrators switch to other easier paths.
Regionally, the Middle East is dominated by e-commerce phishing up to 85.8 percent, Africa by banking phishing at 53.75 percent. Meanwhile, Asia Pacific and Europe show a relatively even spread of attacks in all three categories.
In addition to phishing, infostealer is a key component of modern attacks by stealing login credentials, cookies, and payment card data. Detection of infostealer on PCs increased by 59 percent globally from 2024 to 2025, while Asia Pacific recorded a surge of up to 132 percent.
Kaspersky also noted that more than one million online banking accounts from the world's 100 largest banks were leaked and shared on the dark web. As many as 74 percent of stolen payment cards are still valid until March 2026.
Kaspersky Digital Footprint Intelligence analyst Polina Tretyak stated that the dark web is now a center of financial cybercrime that allows stolen credentials to be collected, sold, and reused massively. So it has the potential to continue to be misused in the long term.
For this, Kaspersky recommends using multi-factor authentication, creating unique, strong passwords, and storing them in a password manager.
Users are also asked not to click on suspicious links and double-check the site address before entering credentials or card details.
Follow VOI Whatsapp Channel
The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)
