Breaking News
A.R.B.J Rajapaksha
A.R.B.J Rajapaksha
Mar 06 2026
98According to the latest Kaspersky Security Bulletin report, 30.4% of Sri Lankan internet users will face cyberattacks via websites in 2025. The report further states that Sri Lanka ranks 20th globally in cyberspace-related threats.
During the period January-December 2025, Kaspersky products detected 9,153,362 different online cyberthreats across the computers of users of the Kaspersky Security Network (KSN) in Sri Lanka. This figure highlights the continuity and evolving nature of cyberthreats targeting Sri Lankan internet users.
“Web threats are arguably the biggest cybersecurity challenge facing Sri Lankan internet users and businesses. With nearly one in five users expected to be attacked by 2025, it is clear that cybercriminals are increasingly targeting the region’s growing digital economy,” said Adrian Hiya, Managing Director, APAC, Kaspersky.
The report identifies two primary attack methods used by cybercriminals to infiltrate systems. The first is cyberattacks through web browsers and their plugins. This occurs when a user visits a website without any user intervention. The biggest risk is posed by online viruses.
The second method is for cybercriminals to trick users into downloading various files through fraudulent websites that pretend to be legitimate programs. This attack also requires user participation to be successful.
To combat these modern cyber threats, Kaspersky products employ advanced security technologies, including machine learning-based models to detect malware activity. Cyberspace Exploit Prevention technology instantly blocks software vulnerabilities.
"In Sri Lanka's digital transformation journey, protecting against web-based threats is of utmost importance. Companies and individuals must go beyond traditional simple antivirus protection and adopt comprehensive security solutions that include proactive, machine learning-based crime detection and behavioral analysis," Hiya added.
Furthermore, Kaspersky also recommends avoiding downloading apps from untrusted sources, avoiding clicking on links from unknown sources or suspicious advertisements, and enabling two-factor authentication whenever possible. Other recommendations include keeping all software in organizations up to date, avoiding exposing remote desktop services to public networks, and using advanced security products for broad visibility into corporate infrastructure.
The 2025 Kaspersky Security Bulletin is available at Securelist.com.
