The underground cybercrime economy is evolving—fast. Ransomware attacks surged by nearly 25% in 2024, and data breaches increased by 43% SOTU. Using Bitsight’s extensive cyber data and AI, we’ve sifted through the deep and dark web to expose trends across three major cybercrimes—analyzing tens of thousands of underground posts to surface key insights. Explore cybercrime statistics from 2025 and beyond, updated monthly.
Step into the Underground
Latest Cyber threat Stats
Explore cybercrime statistics from 2025-2026
In the past 12 months, there have been...
Cybercrime incidents per sector
Across these sectors, ransomware dominates while data breaches and hacktivism continue to rise, offering a snapshot of how the underground cybercrime economy is evolving. Go deeper to explore expanded insights and additional industries.
- MuslimCyberArmy calls for DDoS attack on Israeli websites under #OpsShadowStrike
- Sale of FTP access to over 3,000 servers on underground forum
- Access to Indonesian telecommunications network for sale on underground forum
- Access to Forti network in the USA offered for sale
- Access to Forti network in Jamaica for sale
featured report
State of the Underground 2025
Ransomware is up. Credential leaks are rising quickly. Malware is diversifying. This year’s report drills into how cybercriminals are evolving—and what defenders must do to keep up. We analyzed millions of endpoints, credentials, and forums to expose the realities of the cyber underground in 2024. This isn’t theory—it’s what’s actually happening right now.
Free threat assessment
Get up-to-date threat data for your organization
Attacks start long before the breach. Understand the signals attackers use—uncover ransomware activity, leaked credentials, and exposed vulnerabilities mapped to your organization using real threat intelligence from Bitsight.