Group-IB, a leader in cybersecurity technologies, has released its High-Tech Crime Trends Report 2025, providing an in-depth analysis of the cybersecurity landscape across the Middle East, Turkey, and Africa (MEA).
The report sheds light on the increasing cyber threats in the region, particularly from state-sponsored actors and hacktivist groups, highlighting the growing risks for businesses, governments, and individuals.
High-Tech Crime Trends Report 2025
The report reveals that cyberattacks, particularly Advanced Persistent Threats (APTs) and hacktivism, surged in 2024, with Gulf Cooperation Council (GCC) countries being the primary targets. These attacks are often fueled by geopolitical conflicts and have become a significant concern for the region.
“Our report captures the dynamic and complex nature of cyber threats faced by the Middle East today. It shows that cybercrime is not a collection of isolated incidents, but an evolving ecosystem where one attack fuels the next. From sophisticated state-sponsored attacks to rapidly evolving hacktivism and phishing campaigns, the insights presented in this report are essential for organizations seeking to strengthen their cybersecurity defenses,” said Ashraf Koheil, Regional Sales Director MEA at Group-IB.
Targeted sectors
The report also highlights the increasing frequency of hacktivist attacks in the region, with the MEA accounting for 16.54% of global hacktivist incidents in 2024.
While GCC countries remain the most targeted, Egypt, Turkey, and other countries like Jordan, Iraq, and South Africa also face growing cyber risks. Key sectors affected include government, military, financial services, education, and media, all of which have been targeted to disrupt critical infrastructure.
“We must embrace a collective defense strategy that unites financial institutions, telecommunications providers, and law enforcement agencies. By sharing intelligence, coordinating proactive security measures, and executing joint actions, we can disrupt fraudulent activities before they cause harm. This collaborative approach not only enhances our ability to detect and prevent fraud but also strengthens the resilience of our critical infrastructure, protects our national security,” Koheil added.
Phishing, data breaches and ransomware threats
Phishing and data breaches continue to pose significant threats across the region, especially in industries like energy, oil and gas, and financial services.
The report highlights how these industries are increasingly targeted by cybercriminals for financial gain. Despite the rising threats, ransomware incidents in the MEA region remain relatively low, with only 184 reported attacks in 2024.
The report also discusses the growing issue of Initial Access Brokers (IABs), who exploit vulnerabilities to gain access to sensitive data. GCC countries and Turkey remain prime targets, with millions of compromised credentials and sensitive data appearing on the dark web.
Group-IB’s role in fighting cybercrime
“Group-IB played an intensified role in its global fight against cybercrime and contributed to eight major law enforcement operations across 60+ countries, leading to 1,221 cybercriminal arrests and the dismantling of over 207,000 malicious infrastructures. These efforts disrupted large-scale cybercriminal networks, highlighting the critical role of collaboration between private cybersecurity firms and international law enforcement,” said Dmitry Volkov, CEO of Group-IB.
The report also mentioned the advanced tactics, techniques, and procedures (TTPs) used by threat actors, such as social engineering, ransomware, and credential theft. New techniques like the Extended Attributes Attack, Facial-Recognition Trojan (GoldPickaxe.iOS), and ClickFix infection chain showcase the growing sophistication of cyber threats in the region.
tanvir@dubainewsweek.com
