Em 2025, o ransomware recorded an increase of 51.5% globally, with 7,701 incidents reported, according to the Threat Landscape Report 2025 – Second Semesterfrom Thales. Despite the significant increase, Portugal stood out as one of the least affected countries, with just 28 attacks throughout the year, ranking 27th worldwide, well below neighbors such as Spain and France.
In Portugal, the activity of ransomware was relatively stable, with 14 incidents recorded in the second half of the year. The attacks, led mainly by the Qilin group, focused on the industrial sector, but had a smaller impact compared to other European countries. This resilience reflects the effectiveness of the cybersecurity strategies implemented, although the scenario requires continuous attention, highlights the document.
Global cybercrime has focused on sectors with great operational dependence, such as industry, which led with 2,801 attacks, followed by consultancy and services. The rapid exploitation of 24,365 new vulnerabilities in 2025 has intensified security challenges, reducing the reaction window to just 24 hours after flaws are disclosed.
Thales highlights an increasingly professional and fragmented cybercrime ecosystem, with an increased use of models such as “crime-as-a-service”. Extortion centered on data theft and the use of “low noise” techniques complicate attack detection.
In the Portuguese context, the hacktivismo also recorded consistent activity, with pro-Russian groups targeting public institutions and critical infrastructure. Disinformation campaigns and attacks on water and sanitation management systems were particularly evident.
*Updating
Leave a Reply