Sri Lanka records nearly 15 million local malware attacks, highlighting a growing cybersecurity concern across the country. The latest findings reveal persistent offline threats and vulnerabilities affecting both individuals and organizations in 2025.
Sri Lanka records nearly 15 million local malware attacks in 2025
Sri Lanka records nearly 15 million local malware attacks, underscoring a significant and evolving cybersecurity threat landscape that continues to impact users across the country. According to the latest Kaspersky Security Bulletin, a total of 14,960,244 local malware incidents were recorded in 2025, affecting 37.4 percent of users through offline infection methods such as USB drives, CDs, and other removable media.
This data, derived from the Kaspersky Security Network (KSN) between January and December 2025, reveals a persistent reliance on traditional malware distribution channels that do not require internet connectivity. Unlike more visible online threats, these offline attacks often operate silently, making them particularly dangerous in environments where shared devices and external storage media are commonly used.
Sri Lanka records nearly 15 million local malware attacks at a time when global cybersecurity trends are shifting toward more sophisticated and targeted threats. However, the continued prevalence of offline infections indicates that fundamental vulnerabilities remain unaddressed in many local contexts. Workplaces, educational institutions, and small businesses are especially exposed, as they frequently rely on shared systems and removable storage devices for data transfer.
A closer analysis of the threat types reveals that worms and file viruses are the primary contributors to these incidents. These forms of malware are designed to spread autonomously, often embedding themselves into files or systems without immediate detection. Once introduced into a network or device, they can propagate rapidly, compromising multiple systems before being identified and removed. This characteristic makes them particularly effective in offline environments, where traditional network-based security measures may not apply.
Sri Lanka records nearly 15 million local malware attacks also reflects broader systemic challenges in cybersecurity awareness and infrastructure. Many users remain unaware of the risks associated with using unknown or unsecured removable media. In addition, outdated software and lack of regular system updates further increase vulnerability, providing entry points for malicious code.
The issue is not isolated to Sri Lanka alone. Globally, cybersecurity threats have intensified, with Kaspersky reporting an average of 500,000 malicious files detected daily in 2025, representing a 7 percent increase from the previous year. More concerning is the sharp rise in specific threat categories, including a 59 percent increase in password stealer detections, a 51 percent rise in spyware, and a 6 percent growth in backdoor threats. These figures indicate a shift toward more targeted attacks aimed at extracting sensitive information and maintaining persistent access to compromised systems.
In the Asia-Pacific region, the situation is even more pronounced. Password stealer incidents surged by 132 percent, while spyware detections increased by 32 percent. These trends highlight a growing focus on credential theft and data exploitation, which can have far-reaching consequences for both individuals and organizations. In this context, the high number of local malware incidents in Sri Lanka becomes even more significant, as it represents a foundational vulnerability that can be exploited by more advanced threat actors.
Sri Lanka records nearly 15 million local malware attacks, pointing to the need for a multi-layered cybersecurity strategy. For individual users, basic precautions such as avoiding unknown USB devices, regularly updating software, and using reliable security solutions can significantly reduce risk. However, these measures must be complemented by broader organizational and institutional efforts.
For businesses and institutions, the challenge is more complex. Implementing strict device control policies, deploying endpoint protection systems, and conducting regular security audits are essential steps in mitigating risk. Data backup strategies also play a critical role, ensuring that systems can be restored in the event of a malware attack. In environments where offline data transfer is unavoidable, additional safeguards such as device scanning and restricted access protocols become necessary.
The persistence of offline malware also raises important questions about digital transformation and infrastructure development. As Sri Lanka continues to expand its digital economy, ensuring robust cybersecurity frameworks will be critical in maintaining trust and resilience. Failure to address these vulnerabilities could undermine progress in areas such as e-commerce, digital banking, and online education.
From a policy perspective, there is a growing need for coordinated action between government agencies, private sector organizations, and educational institutions. Public awareness campaigns, cybersecurity training programmes, and investment in advanced security technologies can collectively strengthen the country’s defenses against both offline and online threats.
Sri Lanka records nearly 15 million local malware attacks as a reminder that cybersecurity is not solely a technological issue but also a behavioral and organizational challenge. Addressing it requires a comprehensive approach that combines technology, education, and policy interventions.
In conclusion, the scale of local malware incidents recorded in 2025 highlights the urgency of strengthening cybersecurity practices across Sri Lanka. While global trends point toward increasingly sophisticated threats, the persistence of offline infections indicates that foundational issues remain unresolved. By addressing these gaps and adopting proactive security measures, both individuals and organizations can better protect themselves in an increasingly digital world.