India Saw Over 265 Million Cyber Attacks: Seqrite Issues 2026 Threat Report

New Delhi, 4th December 2025: India continues to witness an alarming surge in cyberattacks, with Seqrite — the enterprise cybersecurity arm of Quick Heal Technologies — reporting over 265 million threats detected in a 12-month period. The company released its India Cyber Threat Report 2026, alongside newly launched services aimed at strengthening cyber resilience and enabling rapid ransomware recovery for enterprises.

The report, prepared by Seqrite Labs, the country’s largest malware research facility, highlights a rapidly escalating threat environment impacting every major sector. Between October 2024 and September 2025, more than 8 million endpoints were monitored, recording 265.52 million detections — an average of over 7.27 lakh attacks per day or 505 every minute.

Malware families such as Trojans (88.4 million) and File Infectors (71.1 million) accounted for the majority of threats, contributing to nearly 70% of total detections.

Next-gen antivirus tools and anti-ransomware systems flagged 34 million+ suspicious activities, while ransomware detections peaked in January 2025 with 185 incidents and 113,000 hits in a single month.

Cryptojacking attempts touched 6.5 million, and 9.2 million network vulnerability scans targeted platforms like WordPress, Apache Tomcat and SysAid.

Among the most impacted regions were Maharashtra (36.1 million detections), Gujarat (24.1 million) and Delhi (15.4 million). Mumbai, New Delhi and Kolkata emerged as the most targeted cities.

Sectors such as education, healthcare and manufacturing accounted for almost 47% of recorded threats — an indication of their high digital dependency and resource limitations.

A companion assessment, India Cybersecurity Preparedness 2026 Survey, reveals mixed readiness levels. While advanced malware protection usage is strong (86.7% adoption), the country scores an average of 6.37/10 on maturity due to gaps in incident response, secure configuration and asset hygiene.

New services launched for rapid cyber recovery

Responding to these trends, Seqrite introduced Ransomware Recovery as a Service (RRaaS). The offering focuses on restoring encrypted data securely using forensic recovery workflows, cryptanalysis and reinfection-proof restoration, enabling businesses to get back online without paying ransom.

The company also rolled out Digital Risk Protection Services (DRPS) — a SaaS platform that scans external digital ecosystems including social media, marketplaces and the dark web to prevent brand impersonation, fake listings, domain spoofing and data leaks. Equipped with machine-learning threat detection, continuous monitoring and automated takedown support, DRPS provides enterprises with actionable intelligence and a dedicated incident response “war room.”

Speaking about the heightened threat environment and Seqrite’s new offerings,

Dr Sanjay Katkar, Joint Managing Director, Quick Heal Technologies, said:

“India is at a pivotal point in its cybersecurity journey. The insights in the India Cyber Threat Report 2026 aim to empower decision-makers with a deeper understanding of evolving attacks. With Seqrite DRPS and RRaaS, organizations can now defend their digital presence more effectively and recover from ransomware incidents without relying on ransom payments. Our goal is to strengthen trust, resilience and operational continuity amid increasingly sophisticated threats.”

The report warns that India’s expanding digital footprint continues to draw attention from cybercriminals, ransomware syndicates and state-linked actors — with hybrid attacks such as Operation Sindoor indicating a blend of financial, political and ideological motivations.

With 14 out of 20 threat predictions from its previous edition having come true, Seqrite says the latest report provides forward-looking insights on zero-day exploits, APT campaigns, identity-centric defense and AI-based security, helping enterprises upgrade their cyber posture for the future.

Seqrite’s solutions are powered by AI/ML-driven security, backed by Indian-made technology and delivered through the country’s largest malware analysis infrastructure. More than 30,000 organizations across 70 countries rely on Seqrite for protection.