Cyber threats are reaching new heights
The latest Kaspersky Security Bulletin paints an alarming picture of the global threat landscape. In 2025, an average of 500,000 new malicious files were detected every day, a seven percent increase from the previous year. This development continues a trend that has been evident for several years. Cyberattacks are not only becoming more frequent, but also more sophisticated and targeted.
Windows systems are particularly vulnerable. According to Kaspersky, 48 percent of Windows users were affected by at least one cyberattack in 2025. By comparison, the figure for macOS was 29 percent. For businesses, this means an increasing risk of attack, especially where outdated systems, inadequate security measures, or a lack of monitoring are in place.
Spyware, information stealers, and backdoors on the rise
In Europe, security experts are reporting a significant increase in particularly dangerous categories of malware. Spyware was detected 64 percent more frequently than in 2024. This malware enables attackers to monitor activities in real time, extract sensitive information, and establish a long-term, undetected presence within the system.
Info stealers are also becoming increasingly prevalent. Password stealers have increased by 48 percent and specifically target login credentials from browsers, password managers, or applications. When combined with other malicious components, they often serve as a gateway for further attacks.
Backdoors saw a 50 percent increase. They allow attackers to gain persistent remote access to compromised systems and often serve as the foundation for data theft, espionage, or ransomware attacks. Examples such as the VShell backdoor demonstrate how such tools are specifically used for long-term surveillance of critical networks.
Vulnerabilities and stolen login credentials as the main points of entry
Despite modern security solutions, familiar patterns persist. Security vulnerabilities remain among the most common attack vectors, closely followed by the misuse of stolen login credentials. Zero-day vulnerabilities, such as those recently exploited in browsers like Chrome and Firefox, are particularly critical.
In addition, supply chain attacks are becoming increasingly prevalent. Attacks on open-source ecosystems, such as the Shai-Hulud npm worm, demonstrate how quickly malicious code can spread through compromised maintainer accounts. Such attacks affect not only individual companies but entire software supply chains.
Why prevention alone is no longer enough
The figures from the Kaspersky Security Bulletin make it clear: traditional security measures are increasingly reaching their limits. Companies must assume that attacks are not only possible but likely. Therefore, what matters is not only prevention but also the ability to detect attacks early and respond to them professionally.
An effective cybersecurity strategy combines technical safeguards with continuous monitoring, threat intelligence, and clearly defined incident response processes. This is the only way to limit damage, minimize downtime, and manage legal and financial consequences.
Cyber Resilience Through Structured Security Strategies
To address the growing threat landscape, a comprehensive approach is recommended. This includes regularly updated systems, isolated and tested backups, and clear restrictions on remote access services. It is equally important to incorporate the latest threat intelligence into your security strategy and to regularly test emergency plans.
In the event of a crisis, a professional incident response team determines how quickly a company can resume normal operations. Structured processes, clear responsibilities, and experienced support are essential for managing attacks in a controlled manner and preventing further damage.