Stay ahead with CYFIRMA’s Monthly Ransomware Report – October 2025.
CYFIRMA’s October 2025 Ransomware Report reveals a strong resurgence in global ransomware activity, with 738 victims recorded marking one of the highest monthly volumes this year. The spike was led by Qilin, which more than doubled its attacks, and Sinobi, which surged sixfold, while new actors such as Black Shrantac, Coinbase Cartel, and GENESIS intensified the threat landscape.
Adversaries increasingly exploited kernel vulnerabilities, runtime environments, and abused code-signing certificates to evade detection, reflecting the growing sophistication of hybrid attack models. The most targeted industries included Professional Services, Manufacturing, Information Technology, and Healthcare, with the U.S. remaining the primary focus. Notably, incidents like the Asahi Breweries breach underscore a clear shift from data theft to industrial disruption, as ransomware continues to evolve into a tool for large-scale business sabotage.
Link to the Research Report: TRACKING RANSOMWARE : OCTOBER 2025 - CYFIRMA
#CYFIRMA #Ransomware#ThreatIntelligence #CyberSecurity #ETLM #DataExtortion #DarkWeb #Malware #InfoSec #DigitalRisk #CyberDefense #CYFIRMAresearch #ExternalThreatLandscapeManagement
https://www.cyfirma.com/
