Check Point Research (CPR) has released its Global Security Report for July 2025, which reveals a sharp escalation in both the scale and sophistication of cyberattacks.

In July, organizations were hit by an average of 1,947 cyberattacks per week, a 5 percent increase compared to the previous year. The education sector was the most affected globally, with an average of 4,210 attacks per organization per week (+24 percent compared to the previous year), followed by the public sector (2,577) and healthcare (2,538). The agriculture sector experienced the largest increase, with an increase of 115 percent compared to the previous year.

The most affected sectors in Sweden Business services are in first place, followed by government, financial services, energy and utilities, and industrial manufacturing. An organization in Sweden has been attacked on average 1,793 times per week over the past six months, compared to 1,594 attacks per organization in the Nordic region.

Advertisement

The number of ransomware incidents increased sharply with 487 reported attacks in July, a 41 percent increase over the previous year. North America accounted for 56 percent of all reported ransomware cases, followed by Europe with 24 percent.

“July’s data shows that ransomware is not only here to stay, but is evolving rapidly, with groups like Qilin expanding their reach to reach valuable targets,” says Mats Ekdahl, security expert at Check Point Software TechnologiesThese attacks are affecting every part of the world and every type of business. Preventive strategies, powered by AI, are the only way to stay ahead.

Ransomware was still one of the most common threats in July 2025, but a few very active groups accounted for a large portion of it. global activityThe three most prominent were Qilin (accounted for 12 percent of all incidents in July), Inc. Ransom (9 percent) and Akira (8 percent), all of which used different methods but shared the same goal – maximum impact and financial gain.