Cybercrime in Russia is reaching new levels. In the third quarter of 2025, there were more than 42,000 cyberattacks, accounting for 40% of the total number of incidents for the year. This is 73% more than in the same period last year.
From July to September, RED Security SOC specialists identified more than 42,000 attacks, which is 73% higher than last year. In August, the number of recorded threats reached a record high of more than 17,000. For comparison, last year in the third quarter, the number of incidents was only 24% of the total for the year.
The largest number of attacks in 2025 was directed at the telecommunications sector, which bypassed industry and became one of the most attacked, along with the IT and financial sectors, and in the media industry, the number of attacks increased by 43%. Experts emphasize that these areas have become particularly attractive to cybercriminals due to opportunities to quickly profit from successful attacks.
According to BI.ZONE specialists, the transport industry became the leader in the number of targeted attacks, accounting for 16% of all incidents, while government agencies accounted for 15% of incidents. In contrast to the third quarter of 2024, when every fifth targeted attack was addressed to the public sector, there is now a change in this dynamic.
According to cyber intelligence from Kaspersky Lab, Russian companies faced an unprecedented number of attacks: incidents were recorded almost daily. There is also an increase in the joint actions of several groups on one compromised infrastructure, which complicates the investigation of incidents.
In recent months, new trends have become noticeable, including the use of legitimate tools for attacks, making them difficult to detect. There has also been a sharp increase in the number of phishing campaigns.