Rising Exploits: 8 Key Takeaways From Kaspersky’s 2025 Cybersecurity Report

A person sitting at a computer with a shocked expression, looking at a screen displaying a 'System HACKED' alert. In the background, a hooded figure is working at another computer, hinting at a cyber attack scenario.

Cyberattacks are becoming sharper, faster, and more frequent, especially for Linux and Windows users. Kaspersky’s latest research paints a worrying picture of the first half of 2025.

Here are the eight most important highlights you need to know.

1. Exploits on the Rise Across Linux and Windows
Kaspersky’s data shows that both Linux and Windows users encountered more exploits in early 2025 compared to the same period in 2024. Attackers are clearly doubling down on exploiting system weaknesses.

2. Linux Users Facing Sharp Increases
The surge is particularly alarming for Linux. In Q2 2025, the number of Linux users encountering exploits jumped more than 50 points compared to Q2 2024. In Q1 2025, the figure was nearly double that of the previous year.

3. Windows Users Not Spared Either
Windows users also saw an uptick in exploit encounters. Q1 2025 was 25 points higher than Q1 2024, and Q2 2025 registered an 8-point increase compared to the same period last year.

4. Critical OS Vulnerabilities Dominate
Exploits targeting operating system flaws are taking center stage. They accounted for 64% of incidents in Q2 2025, a sharp increase from 48% in Q1. Third-party apps (29%) and browsers (7%) trailed behind.

5. Advanced Persistent Threats Still Using Old Tricks
Kaspersky notes that attackers are not only deploying new zero-day exploits but also reviving previously known vulnerabilities. These tools are often used for privilege escalation and deeper system access.

6. CVEs Are Growing at Record Speed
According to cve.org, the number of registered vulnerabilities has skyrocketed. While early 2024 averaged around 2,600 CVEs monthly, 2025 has already crossed 4,000 per month, with many marked as critical.

7. Expert Warning on Escalating Risks
Kaspersky security expert Alexander Kolesnikov stresses that attackers are leaning heavily on privilege escalation. He urges CISOs to prioritize patching, adopt mitigation tools, and hunt for hidden command-and-control implants.

8. Kaspersky’s Cyber Safety Checklist
To stay secure, Kaspersky recommends: testing exploits in safe virtual environments, monitoring infrastructure round the clock, automating patch management, and deploying advanced endpoint security with incident response and employee training.

Cybercriminals are moving fast, but so are defenses. With vulnerability numbers spiking and exploit tactics evolving, organizations that act swiftly with layered protection stand the best chance of staying ahead.