Sri Lanka recorded 14,960,244 local malware incidents in 2025, with a significant portion of users affected by offline cyber threats, according to the latest report by Kaspersky.
The findings show that 37.4% of users in the country encountered malware, much of which was spread through removable media such as USB drives, CDs, and DVDs. These types of threats, often referred to as “local threats,” can infect computers without requiring an internet connection, making them particularly difficult to detect and control.
Cybersecurity experts warn that such offline attacks remain a serious issue in environments where file-sharing devices are commonly used. Offices, schools, and public institutions are especially vulnerable, as infected drives can easily transfer malicious software between multiple systems.
Globally, Sri Lanka ranks 48th in terms of exposure to local malware threats, placing it in the mid-range compared to other countries. While not among the highest-risk nations, the figures highlight a persistent cybersecurity challenge.
The report also points to a broader rise in cyber threats worldwide. Kaspersky detected an average of 500,000 malicious files per day in 2025, reflecting a steady increase in cybercrime activity. Notably, password-stealing malware and spyware incidents have surged, posing growing risks to personal and organizational data.
Experts emphasize the need for stronger cybersecurity practices to combat these threats. Users are advised to avoid plugging in unknown USB devices, regularly update their software, and install reliable security solutions. Organizations, meanwhile, are encouraged to implement stricter controls on external devices and strengthen their overall cybersecurity frameworks.
As Sri Lanka continues to expand its digital infrastructure, the report underscores the importance of raising awareness and improving defenses against both online and offline cyber threats.
Leave a comment