Ransomware attacks and supply chain attacks surged in 2025. Review key data, threat actors, targeted sectors, and trends shaping 2026 risks.

Cyble's publication is a resource for cybersecurity professionals and businesses seeking to stay ahead of evolving cyber threats. Through detailed analysis of threat intelligence, cybersecurity trends, and real-world cyber incidents, Cyble provides  insights into emerging threats, cyber attack tactics, and risk mitigation strategies. Readers can learn about threat detection methodologies, vulnerability assessment techniques, incident response protocols, and compliance standards to enhance their cybersecurity posture. Additionally, Cyble offers expert commentary, best practices, and actionable recommendations to help organizations protect their digital assets, safeguard sensitive data, and maintain business continuity in the face of cyber threats.

Cyble

Ransomware attacks surged 52% in 2025 to 6,604 incidents, while supply chain attacks nearly doubled to 297 events. Qilin emerged as the dominant ransomware group after RansomHub's decline, claiming 17% of all victims. The US remained the primary target (55% of attacks), with construction, professional services, and manufacturing most affected. Supply chain attacks expanded beyond package poisoning to target cloud integrations, SaaS platforms, and vendor distribution pipelines, with IT and technology sectors accounting for over a third of incidents. Nation-state groups like Silk Typhoon and PlushDaemon exploited VPN zero-days and compromised trusted software distribution channels.

Ransomware Attacks And Supply Chain Threats In 2025

Supply Chain Attacks Hit Every Industry and Sector in 2025