The latest Norton Gen Threat Report exposes an alarming 186% increase in critical data breaches during Q1 2025, alongside a sharp rise in AI-powered financial scams and ransomware attacks targeting multiple sectors worldwide.
The latest Norton Gen Threat Report offers a stark warning as it highlights an alarming rise in cybersecurity threats during the first quarter of 2025. While there appears to be a small decline in the total number of blocked attacks, which could suggest a reduction in overall threat activity, the details within the report paint a much grimmer picture. Cybercriminals have increasingly shifted tactics, leading to a staggering 186% surge in records breached, amounting to over 1.19 million instances of either high or critical severity, including the exposure of plaintext passwords. This significant increase underscores the escalating danger as threat actors gain direct access to user accounts.
Alarmingly, breaches are not only rising in terms of severity but also in sheer volume. The report noted a 36% increase in breach events year-on-year, reflected in nearly a 4% uptick in notifications sent to users regarding identity protection incidents. Furthermore, alerts for potential credit fraud increased by approximately 14%, while signals of criminal record misuse surged nearly 12%. Such statistics illustrate an alarming trend that demands immediate attention. The rise in data breaches coincides with a notable uptick in various scams and social media exploits, marking a significant shift in the cyber threat landscape. For instance, malicious push notifications have shown an increase of over 10% in Germany alone, with even sharper increases in other countries, including 25% in Norway and 22% in Denmark.
The pervasive threat landscape has not only witnessed a rise in breaches, but it has also become considerably more lucrative for criminals. Reputable sources note that financial scams employing artificial intelligence, such as deepfakes, have gained considerable ground. A notable campaign by the CryptoCore group accounted for 2,200 fraudulent transactions, netting approximately $3.8 million. Comments from industry experts reflect the evolving tactics of cybercriminals, as they leverage advancements in technology to exploit trust and target victims more ingeniously. The report highlighted the need for individuals to utilise resources like HaveIBeenPwned and invest in robust identity threat protection services, especially given the personal impact these breaches can have.
In a broader context, other reports corroborate the findings of the Norton Gen Threat Report, revealing a worrying escalation in cyberattacks across industries. According to Check Point’s findings, the education sector has emerged as the most targeted, with an astounding average of 4,484 weekly cyber incidents. Ransomware attacks have surged by 126%, particularly hit hard in North America which accounts for 62% of global ransomware incidents. The manufacturing, retail, and technology sectors are also grappling with a substantial increase in attacks, demonstrating the need for stringent cybersecurity measures across all industries.
Moreover, a review from the Identity Theft Resource Center indicates that over 91 million individuals fell victim to data breaches during the same quarter, highlighting a substantial rise of 26% year-on-year. The financial services sector continues to be particularly vulnerable, exemplified by the compromise of sensitive information in large-scale breaches. The report emphasizes the critical urgency for organisations to strengthen their cybersecurity frameworks, with many experts advocating for improvements in password policies, regular vulnerability assessments, timely updates, and comprehensive training for employees to mitigate risks effectively.
As we navigate this increasingly perilous cyber landscape, it becomes increasingly clear that the emphasis must shift from reactive measures to proactive and preventative strategies, safeguarding both personal and organisational data against the evolving threats posed by cybercriminals.
Reference Map:
Source: Noah Wire Services
- https://www.techradar.com/pro/security/over-a-million-critical-severity-records-exposed-in-q1-2025-alone-make-sure-youre-not-at-risk – Please view link – unable to able to access data
- https://www.techradar.com/pro/security/over-a-million-critical-severity-records-exposed-in-q1-2025-alone-make-sure-youre-not-at-risk – The Norton Gen Threat Report for Q1 2025 highlights a significant surge in data-stealing threats, with a 186% increase in breached records and a 102% rise in compromised user emails. Over 1.19 million records of high or critical severity were exposed, including plaintext passwords, posing substantial risks of direct account access by cybercriminals. The report underscores the importance of regularly monitoring breach websites like HaveIBeenPwned and considering identity threat protection services to mitigate potential impacts.
- https://www.checkpoint.com/research/q1-2025-global-cyber-attack-report-from-check-point-software-an-almost-50-surge-in-cyber-threats-worldwide-with-a-rise-of-126-in-ransomware-attacks/ – Check Point’s Q1 2025 Global Cyber Attack Report reveals a 47% increase in cyber attacks per organisation, averaging 1,925 weekly incidents. The education sector was the most targeted, with 4,484 weekly attacks, followed by government and telecommunications. Ransomware attacks surged by 126%, with North America accounting for 62% of global incidents. The consumer goods and services sector was the most targeted by ransomware, highlighting the need for enhanced cybersecurity measures across industries.
- https://www.smartindustry.com/benefits-of-transformation/cybersecurity/article/55280831/leading-cyberattack-against-manufacturing-sets-record-in-q1 – GuidePoint’s Q1 2025 report indicates that manufacturing, retail, and technology industries were most heavily impacted by ransomware, with the nonprofit sector also experiencing a dramatic surge. Actively exploited flaws increased by 75% compared to the same period in 2024, with 12,333 vulnerabilities reported in Q1 alone. Notably, 59% of observed ransomware victims were based in the U.S., underscoring the critical need for robust cybersecurity measures in these sectors.
- https://www.verizon.com/about/news/2025-data-breach-investigations-report – Verizon’s 2025 Data Breach Investigations Report reveals a significant increase in cyberattacks, with third-party involvement in breaches doubling to 30%. Exploitation of vulnerabilities surged by 34%, and ransomware attacks rose by 37%, now present in 44% of breaches. The report highlights the critical need for businesses to invest in robust security measures, including strong password policies, timely patching of vulnerabilities, and comprehensive security awareness training for employees.
- https://www.infosecurity-magazine.com/news/us-data-breach-victim-count-surges/ – The Identity Theft Resource Center (ITRC) reports a 26% year-on-year increase in individuals impacted by data breaches in Q1 2025, with over 91 million victims. The financial services industry led with 193 reported compromises, highlighting its continued vulnerability. The report underscores the urgent need for enhanced cybersecurity measures to protect sensitive personal and financial information.
- https://slingscore.com/data-breaches-surge-in-early-2025/ – Early 2025 witnessed a surge in data breaches, with notable incidents affecting major companies. For instance, UnitedHealth experienced a breach compromising sensitive health insurance information of approximately 190 million individuals, leading to over $3 billion in losses. The report emphasizes the escalating threat landscape and the critical need for organisations to implement robust cybersecurity measures to safeguard personal and financial data.
Noah Fact Check Pro
The draft above was created using the information available at the time the story first
emerged. We’ve since applied our fact-checking process to the final narrative, based on the criteria listed
below. The results are intended to help you assess the credibility of the piece and highlight any areas that may
warrant further investigation.
Freshness check
Score:
8
Notes:
The narrative presents recent findings from the Norton Gen Threat Report for Q1 2025, published on 30 May 2025. The earliest known publication date of similar content is 13 February 2025, when Gen Digital released its Q4 2024 Gen Threat Report, highlighting a surge in online threats and advanced scams. ([investor.gendigital.com](https://investor.gendigital.com/news/news-details/2025/Gen-Q4-Threat-Report-321-Threats-Blocked-Per-Second-as-Social-Media-Becomes-a-Playground-for-Scammers/default.aspx?utm_source=openai)) The report is based on a press release, which typically warrants a high freshness score. However, the earlier publication date of similar content suggests that the narrative may be recycling information. Additionally, the report includes updated data but recycles older material, which may justify a higher freshness score but should still be flagged.
Quotes check
Score:
7
Notes:
The narrative includes direct quotes from the Norton Gen Threat Report. The earliest known usage of these quotes is from the report itself, published on 30 May 2025. No identical quotes appear in earlier material, indicating that the quotes are original to this report. However, the report’s reliance on a press release may suggest that the quotes are part of a broader, pre-prepared communication, which could affect their originality.
Source reliability
Score:
9
Notes:
The narrative originates from TechRadar, a reputable organisation known for its coverage of technology and cybersecurity topics. The report is based on the Norton Gen Threat Report, published by Gen Digital, a well-established company in the cybersecurity industry. This lends credibility to the information presented.
Plausability check
Score:
8
Notes:
The narrative presents data on a significant rise in cybersecurity threats during Q1 2025, including a 186% surge in breached records and over 1.19 million instances of high or critical severity breaches. These figures are consistent with other reports, such as Check Point’s Q1 2025 Global Cyber Attack Report, which noted a 47% increase in cyber attacks per organisation compared to the same period in 2024. ([blog.checkpoint.com](https://blog.checkpoint.com/research/q1-2025-global-cyber-attack-report-from-check-point-software-an-almost-50-surge-in-cyber-threats-worldwide-with-a-rise-of-126-in-ransomware-attacks/?utm_source=openai)) The narrative also highlights the exposure of plaintext passwords, aligning with concerns about data breaches and their potential impact. However, the lack of specific details on the types of breaches or sectors affected reduces the score and flags the report as potentially synthetic.
Overall assessment
Verdict (FAIL, OPEN, PASS): OPEN
Confidence (LOW, MEDIUM, HIGH): MEDIUM
Summary:
The narrative presents recent findings from the Norton Gen Threat Report for Q1 2025, published on 30 May 2025. While the source is reputable, the report’s reliance on a press release and the recycling of older material suggest that the content may not be entirely original. The figures presented are plausible and consistent with other reports, but the lack of specific details on the types of breaches or sectors affected raises questions about the report’s comprehensiveness. Therefore, the overall assessment is ‘OPEN’ with a medium confidence level.
