Seqrite, unveiled its Karnataka Cyber Threat Report 2025, offering an in-depth analysis of the cyber threat landscape in one of India’s most digitally advanced states. The report was presented at ‘CyberShield Mysuru’ hosted by Cyberverse Foundation in the presence of Shri Darshan HV, IAS, Additional Secretary to Government Dept. of Electronics, IT, BT and Science & Technology Govt. of Karnataka and Managing Director of Karnataka Innovation and Technology Society, Shri. Yaduveer Krishnadatta Chamaraja Wadiyar, Member of Parliament, Mysuru-Kodagu, Vishal Salvi, CEO of Quick Heal Technologies Ltd, Mr. Vinayak Godse, CEO DSCI and Smt. Trishikha Kumari Wadiyar, Chairperson, Cyberverse Foundation.
The report, compiled by researchers at Seqrite Labs, India’s largest malware analysis center highlights alarming trends in malware, ransomware, and cyberattacks targeting critical sectors such as IT, healthcare, education, and government services. With the state recording 11.46 million malware detections in 2024 – an average of 31,388 detections per day – the findings emphasise the urgent need for robust cybersecurity measures to protect Karnataka’s digital infrastructure.
The report reveals that Karnataka accounted for 4.3% of total malware detections in India, making it one of the top ten most attacked states. Ransomware detections in the state are also deeply concerning, with 1.78 million detections, representing 9% of India’s total ransomware cases. Bengaluru emerged as the epicenter of these threats, recording malware detection rates four times higher than the state average due to its concentration of IT firms and digital enterprises. Professional services were the hardest-hit industry, with 6.84 million detection hits, followed by government and education sectors. These statistics underscore the growing sophistication of cybercriminals targeting high-value data and critical operations.
Karnataka Cyber Threat Report also highlights how attackers exploited election cycles, financial year-end activities, and festive seasons to launch targeted campaigns. For example, phishing campaigns surged during the March-April 2024, possibly due to the elections that were scheduled around that period. Similarly, ransomware attacks on BFSI (Banking, Financial Services & Insurance) institutions peaked during tax filing periods in July 2024. Festive seasons saw scams targeting students and job seekers through fake admission and hiring portals.
Several high-profile incidents are detailed in the report, including a ransomware attack on Manipal Hospitals that disrupted patient care by encrypting critical medical records and administrative systems. Another significant case was the February 2025 Distributed Denial of Service (DDoS) attack on Karnataka’s Kaveri 2.0 property registration portal, which caused delays in property transactions and an estimated ₹47.75 crore revenue loss in a single day. The report also documents hacktivist-led attacks on government portals and educational institutions throughout 2024.
During the unveiling of the report, Vishal Salvi, CEO of Quick Heal Technologies Ltd., commented, “The findings from our Karnataka Cyber Threat Report 2025 provide a deep-dive into the evolving tactics of cybercriminals who are increasingly targeting high-value sectors such as healthcare, government services, and IT infrastructure. Both, individuals and organisations, must adopt advanced measures like real-time threat detection powered by AI-driven tools such as Quick Heal AntiFraud.AI, multi-factor authentication (MFA), and zero-trust architectures to safeguard their assets. At Quick Heal Technologies Ltd, we are proactively working towards ensuring robust data privacy for users across industries. All our retail products under the brand ‘Quick Heal’, and enterprise security products under the brand ‘Seqrite’, are fully compliant with the provisions mentioned in the recently released provisions of the DPDP Act.”
The Karnataka Cyber Threat Report also highlights emerging trends such as double extortion ransomware tactics, where attackers not only encrypt data but also threaten to leak it, and AI-powered phishing campaigns that exploit deepfake technology to deceive victims. Banking trojans like Dridex and Emotet continue to plague financial institutions during peak periods like tax season. Amidst this, the government of Karnataka has taken significant steps to combat cybercrime through its Cyber Security Policy 2024. The state allocated ₹100 crore to train 40,000 cybersecurity professionals while focusing on sector-specific strategies for BFSI, education, manufacturing, and government agencies. However, Quick Heal recommends further investments in advanced threat intelligence & fraud prevention systems like AntiFraud.AI for fraud detection and prevention across industries.
The release of Karnataka Cyber Threat Report 2025 serves as a wake-up call for organisations across industries to prioritise cybersecurity as a core business function rather than an afterthought. By leveraging comprehensive cybersecurity solutions from Quick Heal and its enterprise brand Seqrite, which are designed to simplify IT security management while ensuring compliance with national data protection laws, individuals and businesses can build resilient defenses against evolving cyber threats.