At GITEX 2025, Kaspersky Warns of Rising Cyberthreats in the GCC: Password Stealers, Ransomware, and Spyware on the Rise
At GITEX 2025, global cybersecurity leader Kaspersky unveiled new data revealing a sharp increase in sophisticated cyberthreats across the Gulf Cooperation Council (GCC). The company emphasized that understanding the region’s evolving threat landscape is now essential for effective, day-to-day cyber defense.
According to Kaspersky’s telemetry, more than 50 million web and local threats were detected and blocked across the GCC during the first eight months of 2025. Among them, password stealer detections surged by 21%, and spyware attacks rose by 34%, signaling a steady escalation in complex and targeted cyber operations.
The share of users targeted by ransomware also increased from 0.24% to 0.30% in the same period. While this percentage may appear modest, Kaspersky explained that modern ransomware campaigns are more targeted than ever, focusing on high-value victims such as enterprises and government institutions—resulting in fewer overall cases but a greater impact per attack.
Targeted Attacks Against Businesses Escalate
The report further shows notable growth in threats aimed at corporate environments. Backdoor detections jumped by 32%, granting attackers remote control over infected systems. Exploit detections rose by 21%, with Microsoft Office being the most frequently targeted platform. Meanwhile, password stealers targeting businesses surged by 72%, and spyware incidents increased by 58%, highlighting the urgent need for a comprehensive, multi-layered defense strategy.
> “The data reflects how cybercriminals are becoming more strategic in their operations,” said Maher Yamout, Lead Security Researcher at Kaspersky.
“Instead of relying on large-scale, basic attacks, they are increasingly deploying advanced tools such as spyware, backdoors, and password stealers. These threats can remain undetected for long periods, causing significant damage before being discovered. Stolen credentials are often sold to ransomware groups or the highest bidder, making visibility and timely threat intelligence critical for organizations in the GCC,” he added.
Recommendations for Stronger Cyber Resilience
To help businesses and government organizations enhance their cyber resilience, Kaspersky experts recommend:
Deploying advanced security platforms, such as Kaspersky Next, combining endpoint, cloud, and XDR/EDR capabilities to detect and respond to complex threats.
Keeping software up to date, especially widely used applications like Microsoft Office, to reduce exploit risks.
Leveraging threat intelligence services to understand attacker tactics and reinforce defenses.
Providing regular employee training to prevent phishing and other common attack methods.
For individuals, using a robust protection suite like Kaspersky Premium to stay secure online.