India is facing a sharp escalation in cyber risk, with organisations now averaging 3,195 attacks per week, according to the latest Cyber Security Report from Check Point Software. The figure represents a 2% rise on 2024 levels and reflects a structural shift in how threat actors operate.
Researchers state that attackers are moving away from manual intrusion techniques toward automated campaigns capable of operating at speed and scale. “AI is changing the mechanics of cyberattacks, not just their volume,” said Lotem Finkelstein, vice-president of research at the firm. He added that early signs of autonomous attack methods are already emerging.
The education sector currently records the highest exposure, averaging 7,684 weekly attacks per organisation. Government entities follow with 4,912, while business services face roughly 3,747 attacks weekly. Analysts say the figures demonstrate how widely advanced capabilities have spread across the cybercrime ecosystem, allowing less sophisticated actors to launch coordinated and personalised campaigns.
Ransomware activity continues to expand but is becoming more decentralised. The report links this fragmentation to a 53% global increase in extortion victims and a 50% rise in new ransomware-as-a-service groups, as smaller specialist operators enter the market.
The findings emphasise that traditional reactive security models are no longer sufficient. The report states that organisations must “revalidate security foundations for the AI era and stop threats before they can propagate,” urging a prevention-first posture rather than relying solely on detection and response.
Attackers are also broadening tactics beyond malware, increasingly using social engineering through collaboration platforms and phone impersonation, as well as exploiting unmonitored edge devices and VPN infrastructure to conceal malicious activity within legitimate traffic.
For cyber insurers and brokers, the data reinforces several underwriting realities: attack frequency is rising, attribution is becoming harder, and loss events can scale rapidly once automation is deployed. These dynamics are driving demand for higher limits, tighter controls and more continuous risk monitoring as AI reshapes both offence and defence across the threat landscape.
