The Baltic States are not among the countries most frequently affected by cyberattacks, Renate Strazdiņa of Microsoft’s NTO Europe North Multi-Country Cluster told LETA.

However, Strazdiņa pointed out that attackers are not resting – they are rapidly learning to use the latest technologies, including artificial intelligence, to enhance and accelerate their methods of operation.

According to Microsoft’s Digital Defense Report for the first half of 2025, Latvia ranked 64th globally among countries whose users are most frequently targeted by cyberattacks. Estonia ranked 63rd, and Lithuania 53rd.

Strazdiņa noted a shift in recent years – not only public institutions but also small and medium-sized enterprises are increasingly being targeted by cybercriminals, often through operations carried out by state-sponsored groups.

Microsoft reported that hospitals, educational institutions, and municipalities are becoming increasingly frequent targets of cyberattacks because they have access to sensitive data yet often lack sufficient cybersecurity resources. The consequences of such attacks can delay medical care, disrupt education, or bring public transport to a standstill. Ransomware developers exploit these vulnerabilities, as organizations in these sectors often pay ransoms quickly to restore services.

The Digital Defense Report reveals that more than 52 percent of targeted cyberattacks are carried out through extortion and ransomware, while espionage accounts for about 4 percent of cybercrime.

Today’s cybercriminals are predominantly financially motivated opportunists rather than state-sponsored actors. In 80 percent of cases, attackers aim to obtain personal data, underlining the universal nature of the threat, the company said.

Microsoft emphasized that while criminals are the most common perpetrators of cyberattacks, state-sponsored groups continue to target strategic industries and regions, mainly for espionage but also for financial gain.

Artificial intelligence is increasingly being used by both attackers and cybersecurity professionals. Cybercriminals are using it to automate phishing and generate fake content, while security experts employ it to close detection gaps and protect users, according to the company.

Microsoft noted that as cyber threats grow more sophisticated, organizations must continuously improve their protection measures and share the knowledge they gain. Meanwhile, countries need to develop clear frameworks that ensure real consequences for malicious activities and promote greater transparency among all stakeholders.

The report also highlights that outdated security solutions are no longer effective enough. Modernizing security systems and ensuring close cooperation between industry and public authorities are critical to strengthening cybersecurity.

At the individual level, the use of multi-factor authentication – especially phishing-resistant solutions – can prevent more than 99 percent of identity thefts and related attacks, according to Microsoft.

Source: BNS

(Reproduction of BNS information in mass media and other websites without written consent of BNS is prohibited)