<ul><li>In Q1 2025, Kaspersky products blocked over 629 million attacks, with 88 million unique links detected by Web Anti-Virus.</li><li>File Anti-Virus blocked over 21 million malicious objects, and nearly 12,000 new ransomware variants were found.</li><li>Phobos Aetor operation led to arrests of 8Base members for cyberattacks involving Phobos ransomware.</li><li>Law enforcement efforts resulted in extraditing a suspected ransomware developer linked to LockBit.</li><li>New vulnerabilities in Paragon Partition Manager were exploited for BYOVD attacks in Q1.</li><li>Akira ransomware bypassed EDR by exploiting a webcam vulnerability and using Linux-based systems.</li><li>HellCat utilized compromised Jira credentials for attacking companies like Ascom and Jaguar Land Rover.</li><li>Ransomware group RansomHub remained a leader in adding new victims, followed by Akira and Clop.</li><li>Kaspersky detected three new ransomware families and 11,733 new variants, a significant increase from the previous quarter.</li><li>315,701 unique users worldwide were attacked by miners in Q1 2025, with various countries facing such attacks.</li></ul>

IT threat evolution in Q1 2025. Non-mobile statistics

Discover more