India has emerged as the third most targeted country for ransomware attacks in the Asia-Pacific (APAC) region, according to the Global Threat Landscape Report: H1 2025 by US-based cyber threat intelligence firm Cyble.
The Cyble report highlights a surge in ransomware and supply chain attacks worldwide, with India recording 21 ransomware incidents in the first half of 2025—trailing only Taiwan (37) and Singapore (32).
The most impacted sectors in India include Information Technology, Banking, Financial Services and Insurance (BFSI), and Manufacturing.
These industries form the backbone of the nation’s digital economy, making them prime targets for cybercriminals seeking high-value payoffs.
Globally, ransomware incidents surged by 54% in H1 2025, with attacks increasingly concentrated among a few dominant threat groups.
In the APAC region, attackers often time their campaigns to coincide with periods of instability, amplifying their impact.
In India, ransomware groups such as Qilin, RansomHub, and Medusa are exploiting sector-specific vulnerabilities and leveraging precision targeting.
Their methods include exploiting unpatched systems, weak authentication protocols, and supply chain dependencies.
“India’s growing digital economy makes it a lucrative target for cybercriminals,” as per Cyble leadership, and stressed the urgent need for organizations to strengthen cybersecurity measures to counter evolving ransomware tactics.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
