NDM Technologies Cyber News

Phishing and Ransomware Threats Surge: KnowBe4's Key Trends for 2025

Recent data from KnowBe4 highlights a significant surge in phishing attacks and ransomware incidents, underscoring the growing sophistication of cyber threats. Between September 15, 2024, and February 14, 2025, phishing emails increased by 17.3% compared to the previous six-month period. Alarmingly, 57.9% of these emails originated from compromised accounts, with 11.4% of those coming from within an organization’s supply chain. This trend exposes a dangerous escalation in the risk of insider threats and supply chain vulnerabilities.  

Polymorphic Phishing: A Growing Challenge Cybercriminals are deploying polymorphic phishing attacks at an unprecedented scale. Leveraging AI, these attacks create subtle variations in phishing emails that evade traditional security measures, such as blocklists, secure email gateways (SEGs), and native security tools. The adaptability of these attacks makes detection and remediation increasingly difficult, putting organizations at greater risk.  

Ransomware is Back on the Rise Ransomware payloads in phishing attacks surged by 22.6% over the same period, with an even more alarming 57.5% spike from November 1, 2024, to February 15, 2025. This dramatic acceleration signals an urgent need for businesses to strengthen their defenses against ransomware threats.  

Organizations must adopt a multi-layered security approach, incorporating advanced email security tools, and robust employee training to combat the evolving phishing and ransomware landscape.  

The Growing Cyber Threat to SMBs: Why Prepardness is Critical

For small-to-medium-sized businesses (SMBs), the risk of a cyberattack is more than just an inconvenience—it can be a matter of survival. According to a recent survey by  VikingCloud nearly one in five SMBs that fall victim to a successful cyberattack could be forced to close their doors permanently. Given the financial impact of these attacks, it’s easy to see why.  

Cyberattacks cost SMBs an average of $250,000, with damages potentially reaching as high as $7 million. These staggering costs are often difficult, if not impossible, for many businesses to recover from. Expenses can include forensic investigations, system recovery efforts, lost revenue, and regulatory fines related to data breaches.   

In the past year alone, one-third of SMBs experienced a cyberattack. Among the most common cybersecurity disruptions reported were:  

• Wi-Fi or network disruptions  

• Phishing attacks via text and email  

• Fake social media accounts and fraudulent website domains  

However, the threat landscape is evolving beyond these common attacks. SMBs are increasingly targeted by malware, denial-of-service (DoS) attacks, deepfake scams, and ransomware campaigns. These sophisticated attacks can paralyze business operations, siphon sensitive data, and demand hefty ransoms in exchange for restoring access to critical systems.  

Despite the growing awareness of these risks, many SMBs remain unprepared to defend themselves. Limited cybersecurity budgets, lack of dedicated security personnel, and outdated infrastructure leave businesses vulnerable to attack. Without a comprehensive cybersecurity strategy, SMBs risk becoming easy prey for cybercriminals.  

So, what can SMBs do to bolster their cybersecurity resilience? Here are some key steps:  

• Invest in Security Awareness Training: Employees should be trained to recognize phishing scams, social engineering tactics, and other cyber threats.  

• Implement Multi-Factor Authentication (MFA): Adding an extra layer of security can prevent unauthorized access even if credentials are compromised.  

• Regularly Update and Patch Systems: Keeping software and systems up to date helps close security gaps that hackers exploit.  

• Develop an Incident Response Plan: Having a well-defined response plan can reduce the impact of an attack and accelerate recovery efforts.  

• Partner with Cybersecurity Experts: Working with professionals can help SMBs assess vulnerabilities and implement effective defenses.  

Cyber threats are not going away, and SMBs cannot afford to ignore them. By taking proactive measures, businesses can significantly reduce their risk and ensure they remain operational—even in the face of an evolving cyber threat landscape.  

March 31st is World Backup Day

March 31st marks World Backup Day, an annual reminder of the critical role data backups play in cybersecurity and business continuity. As cyber threats escalate and data becomes the lifeblood of enterprises, having a reliable backup strategy is more than a precaution—it's a necessity. For cybersecurity professionals and organizations alike, this day serves as a call to action to assess, strengthen, and reinforce data protection measures.  

The Rising Threat Landscape  

Cyber threats such as ransomware, phishing attacks, and insider threats have made robust backup strategies essential. Without a secure backup, organizations are left vulnerable, facing the risk of draining their lifeblood without backups in place.   

The risk for data loss is omnipresent, with cybercrime, natural disasters, hardware failures, and human errors as major contributors to the risk factor. A simple accidental deletion or a server crash can have devastating consequences if businesses lack a structured backup strategy. World Backup Day serves as an annual reminder to evaluate these risks and fortify data resilience.  

The Role of Backup in Cyber Resilience  

A well-implemented backup strategy is a cornerstone of a strong cybersecurity framework. Effective backup plans align with the 3-2-1 Backup Rule:  

• Maintain three copies of data.  

• Store copies on two different media types.  

• Keep one copy offsite or in the cloud.  

Adhering to this rule can give your business a fighting chance to recover from cyber incidents, natural disasters, or system failures without significant disruption. Additionally, organizations should integrate encryption, access controls, and periodic backup testing to strengthen security.  

Business Continuity & Compliance Requirements  

For industries handling sensitive data—such as finance, healthcare, and manufacturing—compliance regulations mandate strict data protection measures. Frameworks such as NIST 800-34, HIPAA, and GDPR require organizations to implement reliable backup and disaster recovery plans. Failure to comply can lead to heavy fines, reputational damage, and legal liabilities. World Backup Day is the perfect opportunity for businesses to audit their backup procedures and test recovery protocols to align with industry standards.   

Best Practices for a Resilient Backup Strategy  

To maximize the effectiveness of backups, organizations should follow these best practices:  

1. Automate Backups: Reduce human error by implementing scheduled and real-time backup solutions.  

1. Test Recovery Plans: Regularly perform backup restoration tests to ensure data integrity and minimize downtime.  

1. Secure Backup Data: Encrypt backups to prevent unauthorized access and protect against data breaches.  

1. Leverage Cloud Solutions: Cloud-based backups provide scalability, redundancy, and faster recovery options.  

1. Monitor & Audit Regularly: Continuous monitoring helps identify gaps in the backup strategy and allows for quick remediation.  

World Backup Day is not just another date on the calendar—it’s a crucial reminder for businesses and individuals to prioritize data protection. Cybersecurity threats are evolving, and data resilience is non-negotiable. By implementing a comprehensive backup strategy, organizations can safeguard their digital assets, maintain business continuity, and mitigate risks effectively.  

This March 31st, make it a priority to back up your data and protect your digital life.   

Upcoming Conferences & CPE Opportunities

The Official Cybersecurity Summit

This 2nd annual Baltimore Cybersecurity Summit will connect you with C-Suite and Senior Executives responsible for protecting their companies' critical infrastructure. Learn innovative solutions and access interactive panels and discussions. 

April 10 -- Baltimore, MD 

RSAC 2025 Conference

Step into a vibrant, thriving community of thinkers, innovators, and achievers from different corners of the cybersecurity world. Attend keynotes, interactive sessions, and network to shape the future of security.  

April 28 - May 1 -- San Francisco, CA

SANS Cybersecurity Leadership Summit

Learn, share, and engage with fellow cybersecurity leaders at the SANS Cybersecurity Leadership Summit. The SANS Cybersecurity Leadership Summit is for industry leading CISOs, directors and managers looking to empower themselves with the knowledge and tools to not just participate, but to set the pace in cybersecurity leadership.   

April 24 -- Virtual