India blocks over 4.7 crore cyber threats in 2025

Cybersecurity firm Kaspersky has reported a sharp rise in cyber threats targeting internet users in India, revealing that more than 4.7 crore web-based attacks were detected and blocked across the country in 2025.

According to the company, about 24.7 per cent of internet users in India encountered web-based threats during the year. Between January and December 2025, Kaspersky’s security systems blocked a total of 47,526,422 internet-borne cyber threats on users’ computers.

The data indicates that internet users in India faced an average of nearly 1,30,209 web threats every day in 2025, reflecting the scale and persistence of cyberattacks targeting individuals and organisations online.

Kaspersky said that most of these attacks were delivered through web browsers by exploiting vulnerabilities in browsers and their plug-ins. Such weaknesses continue to remain one of the primary entry points for cybercriminals seeking to infiltrate systems.

Globally, India ranked 62nd in terms of the share of users affected by web-based threats, based on analysis by the Kaspersky Security Network (KSN).

The company also warned about the growing use of file-less malware, considered one of the most dangerous cyber threats. Unlike traditional malware, file-less attacks operate in a system’s memory and leave minimal traces on infected devices, making detection and removal more difficult.

Meanwhile, malicious email attacks worldwide increased by 15 per cent in 2025. Cybercriminals are increasingly using advanced phishing tactics, including disguising malicious links through link protection services and embedding them in QR codes.

Experts say such methods often lure victims into switching to messaging platforms or calling fraudulent numbers, where they are manipulated into sharing personal information that can later be used for financial fraud or blackmail. India also reported several cases of so-called “digital arrest” scams during the year.