Malware surge hits finance with little warning

Kaspersky reported that the global financial sector faced an aggressive wave of cyber threats in 2025 as criminals expanded the use of AI, blockchain infrastructure and coordinated attacks tied to organized crime.

The company’s 2025 Security Bulletin showed that 8.15 percent of users in the finance sector encountered online threats this year, while 15.81 percent faced local threats.

Ransomware incidents rose sharply, with 12.8 percent of B2B companies in finance affected and a 35.7 percent increase in unique users hit compared with 2023.

Irina Maltseva, Growth lead at @Aura_Protects , a company helping families safeguard themselves against identity theft, scams, and online threats, paints a sobering picture of how digital threats are evolving and what organizations can do to stay ahead.https://t.co/Samtsikfes

— TBC News Official (@tbcnewsph) September 5, 2025

Kaspersky detected more than 1.3 million banking trojan attacks, driven by criminal groups shifting to messaging apps as new malware delivery channels.

The report said supply chain breaches became more severe as vulnerabilities in third-party providers spread across national payment systems and central platforms.

Researchers also warned of the growing convergence between physical crime and cybercrime as attackers combined social engineering, insider access and technical exploitation.

Mobile banking threats increased as Android malware automated fraudulent transfers and NFC-based schemes expanded in crowded areas and through fake banking apps.

The bulletin highlighted the rise of blockchain-based command systems that allow malware operators to hide instructions inside smart contracts, making takedowns harder.

Kaspersky expects deeper use of AI-driven malware, more regional information stealers and expanding attacks targeting NFC payments in 2026.