New Report Warns of Rising Cyber Attacks Across India

India is witnessing a rapid escalation in digital attacks, with organisations now facing an average of 3,195 cyber incidents every week, according to a new report released in New Delhi. The scale of these attacks underscores the growing vulnerabilities in an increasingly connected economy.

The findings come from the 2026 Cyber Security Report published by Check Point Software. The study says, “In 2025, the weekly average cyber-attacks in India stood at 3,195, marking a 2 per cent increase compared to 2024.” This steady rise reflects a broader global shift in how cybercrime is being carried out.

According to experts, attackers are no longer relying on isolated, manual operations. They are deploying large-scale, high-speed campaigns that can target thousands of systems simultaneously, making detection and response more difficult than ever.

How is Artificial Intelligence reshaping cyber attacks?

The report points to AI as the key force transforming cybercrime. AI-powered tools now allow hackers to scan networks, identify weaknesses and launch attacks automatically, dramatically increasing their reach and efficiency.

“As noted in the report, ‘AI is changing the mechanics of cyber attacks, not just their volume,’” said Lotem Finkelstein, Vice President of Research at Check Point Software.

He added, “We are seeing attackers move from purely manual operations to increasingly higher levels of automation, with early signs of autonomous techniques emerging.”

The report explains tools once reserved for elite hacking groups are now easily accessible, “enabling more personalised, coordinated, and scalable attacks against organisations of all sizes.” This democratisation of cybercrime has widened the risk for businesses, schools, and public institutions alike.

Is the government under pressure?

Among all sectors, education institutions have emerged as the most targeted in India. The report found that they face an average of 7,684 attacks per organisation every week, making them prime targets for cybercriminals.

Government bodies are also under heavy strain, recording 4,912 weekly attacks per organisation, while business services face about 3,747 incidents. These figures underline how both public and private sectors are being drawn into the expanding threat landscape.

Analysts suggest that limited budgets, outdated systems, and large user bases often make educational and government institutions more vulnerable, creating easy entry points for attackers seeking sensitive data or system access.

Is ransomware and social engineering on the rise?

Ransomware remains one of the most dangerous forms of cybercrime in India and globally. The report notes that the ransomware ecosystem is becoming more fragmented, with smaller, specialised groups replacing large, centralised syndicates.

This decentralisation has contributed to a 53 per cent increase in extortion victims and a 50 per cent rise in new ransomware-as-a-service groups worldwide. Such services allow even low-skilled criminals to launch sophisticated attacks.

At the same time, social engineering tactics are expanding into new spaces. Attackers are increasingly using collaboration platforms, phone-based impersonation, and phishing campaigns to deceive employees and gain access to corporate systems.

The report also warns that unmonitored edge devices and unsecured VPNs are being exploited to mask malicious activity within legitimate network traffic, making detection more challenging.

Is it important to rethink cyber defence for the AI Era?

According to the study, traditional security models are no longer sufficient in the face of automated, AI-driven threats. It states that “defending against this shift requires revalidating security foundations for the AI era and stopping threats before they can propagate.”

Rather than relying only on faster responses, the report urges organisations to redesign their security architecture around prevention. “Defending against AI-driven threats requires rethinking how security is designed and enforced, not simply reacting faster,” it adds. Experts believe this approach involves continuous monitoring, advanced threat intelligence, employee training, and stronger controls over digital access points. Without such reforms, organisations risk falling behind increasingly sophisticated attackers. The report concludes that as India’s digital economy expands, building resilient and adaptive cybersecurity systems will be critical to protecting businesses, public services, and citizens in the years ahead.

(With inputs from ANI)