Cyberattacks Surge in 2025: Education, Government, and Telecom Hit Hardest

Cyberattacks on businesses are rising sharply in 2025, with global organizations facing an average of 1,925 attacks per week in the first quarter alone. That’s a 47% jump compared to the same period last year, according to a new report by cybersecurity firm Check Point.

The education sector has been hit the hardest, with schools and colleges facing an average of 4,484 cyberattacks each week. Government departments and telecommunications companies also saw a major rise, with telecoms experiencing a staggering 94% increase in attacks year-over-year.

Experts say this spike is due to a combination of increased digital dependence and well-organized cybercrime networks. “Cyberattacks have become a business,” said David Ratner, CEO of threat intelligence company HYAS. “Criminals now create and sell hacking tools to others, making it easier and cheaper for anyone to launch an attack.”

Ben Hartwig, a data security expert at Infotracer, echoed this view, saying, “Ten years ago, most attacks were random. Today, they’re well-planned and often run like franchises. Attackers are targeting specific industries like healthcare and education using advanced tools.”

The number of ransomware attacks has also skyrocketed. In the first three months of 2025, there were 2,289 reported ransomware incidents — a 126% rise from the same time last year. High-profile victims in the UK have included supermarkets like Sainsbury’s, Morrisons, M&S and Co-op, as well as the Legal Aid Agency and pathology firm Synnovis, which affected NHS services.

Check Point's data comes from its monitoring of 150,000 networks and millions of devices, along with other sources scanned daily.

Another reason behind the growing cyber threat is the increased use of artificial intelligence (AI) tools. Entry-level hackers can now buy or rent access to compromised systems through Telegram or dark web forums, making it easier for anyone to launch a cyberattack.

Some AI tools, including popular chatbots like ChatGPT, Gemini, and Claude, can be misused through prompt-based attacks. Meanwhile, illegal AI models like WormGPT and GhostGPT are being shared on underground sites at little or no cost.

A recent Europol report revealed that crime groups in Europe are using AI for fraud, data theft, and money laundering. They’re also deploying AI-generated malware, deepfake videos of CEOs, and automated ransomware.

Although businesses are eager to use AI to improve efficiency, experts warn that it can introduce new risks. A study by insurer QBE found that more than half of UK companies hit by cyberattacks last year said the breach came through third-party suppliers — including AI vendors.

Some attackers now exploit AI-powered coding tools like GitHub Copilot, which can mistakenly suggest fake software packages. Developers might unknowingly download these, opening the door to malware.

“Even if a company has strong cybersecurity, it’s still vulnerable if its suppliers aren’t secure,” said David Warr of QBE Insurance. “It’s more important than ever to assess the entire digital network — not just what’s in-house.”

As cyber threats grow more complex and accessible, experts urge businesses to stay vigilant, regularly audit their systems, and train employees to recognize potential threats.