H1 2025 Cyberthreats: Highlights from ESET’s Report

ESET’s latest Threat Report spotlights the biggest shifts in global cyber risks from December 2024 through May 2025, helping security leaders prioritize defenses.

Key findings:

• ClickFix social engineering surges: detections climbed more than fivefold versus H2 2024.
• Android adware up 160%, fueled by “evil twin” fraud and a rise in potentially unwanted apps (PUAs).
• Ransomware activity and the number of gangs grew, while overall ransom payment values trended downward.

Why it matters:

• Attackers are leaning on low-friction social engineering to bypass MFA and user caution.
• Mobile ecosystems face heavier adware/PUA pressure, raising privacy, fraud, and device hygiene risks.
• Ransomware remains prolific even as payouts dip, signaling stronger resilience and shifting negotiation dynamics.

What you can do now:

• Update awareness training to cover ClickFix-style lures; deploy phishing-resistant MFA and tighten help-desk workflows.
• Lock down Android: restrict sideloading, monitor for PUAs/adware, and use mobile threat defense.
• Harden ransomware defenses: patch promptly, secure RDP, enforce least privilege, and maintain tested, offline backups.
• Continuously monitor and rehearse incident response for faster containment.

Watch and learn more:

• Hear ESET Chief Security Evangelist Tony Anscombe break down the trends, and explore which threat categories rose or fell—and what they mean for your 2025 strategy.

Source: WeLiveSecurity