Kaspersky said on the 6th that it released its report, "Status of cyber threats in Korea in 2025."
The report analyzed data collected based on the Kaspersky Security Network (KSN) and found that in 2025, 6.5 million web-based attacks and 9.19 million local threats were detected in Korea.
Web-based attacks were identified as a major infection route. "Drive-by download," in which malware is installed simply by a user visiting an infected website, and social engineering attacks that induce the download of files disguised as legitimate programs were analyzed as representative types.
In particular, as fileless malware that resides in the system without leaving files and attacks using code obfuscation increase, the importance of response technologies such as behavior analysis based on Machine Learning is growing.
As of 2025, a total of 6,509,471 web-based threats were detected in Korea, and 17.5% of all users were exposed to those threats.
Local threats also appeared at a high level. Malware that spreads through removable media such as USBs and CDs was a major type, and caution is required because infections are possible even in offline environments.
During the same period, 9,194,755 local threats were detected in Korea, and 30.9% of all users were affected.
Kaspersky analyzed that to respond to these threats, it is necessary to build a multilayered security system, including a firewall, anti-rootkit, and removable device control.
Lee Hyo-eun, head of Kaspersky's Korea office, said, "As Korea's digital environment has become more advanced, various cyber threats are emerging simultaneously," and added, "A multilayered security strategy that can respond to both web-based attacks and local threats is important."