Report an incident

Get 24/7 incident response assistance from our global team

Talk to sales

Just fill out the form, and our representative will contact you soon.

Join the Cybercrime Fighters Club

Please review the following rules before submitting your application:

1. Our main objective is to foster a community of like-minded individuals dedicated to combatting cybercrime and who have never engaged in Blackhat activities.

2. All applications must include research or a research draft. You can find content criteria in the blog. Please provide a link to your research or research draft using the form below.

Europe Intelligence Insights, September 2025
← Research Hub

Europe Intelligence Insights, September 2025

In recent months, the manufacturing, construction, and IT sectors faced fresh ransomware campaigns. Hacktivist collectives stepped up their DDoS assaults on European organizations. Credential leaks and initial access sales, though declined, kept exposing critical business infrastructure across the continent. Get the latest data, trends, and insights in the full report.

Europe’s latest threat activityEurope’s latest threat activity

The past months brought another sharp rise in cyber incidents. Across Europe, 153 ransomware attacks were recorded, up to 28% month over month. The construction, IT, and manufacturing sectors experienced the heaviest impact. Get the full list of top targets and key threat actors in the report.

Hacktivism and DDoS take center stageHacktivism and DDoS take center stage

DDoS and hacktivism activity increased by 42%, with Germany, Spain, Belgium, and the United Kingdom among the most targeted countries. The hacktivist groups NoName057(16) and Z-ALLIANCE carried out most of the DDoS attacks across the EU.

Operation Serengeti 2.0Operation Serengeti 2.0

INTERPOL’s Operation Serengeti 2.0, supported by Group-IB, led to 1,209 arrests, helped dismantle 11,400 pieces of malicious infrastructure, and made it possible to return $97.4 million to victims.

Group-IB contributed intelligence on cryptocurrency investment scams, BEC infrastructure, and other malicious assets active in the region.

Stop threats before they take over

Group-IB experts outline the latest regional risks and share steps you can take to strengthen your defenses against ransomware, hacktivism, and data compromise.

Receiving insights but unsure how to apply them to your defenses? Our experts are here to help. Contact us.

Stay informed. Stay protected.

Relevant reports

We see the full picture of the evolving cyber threat landscape thanks to unique tools for monitoring the infrastructure used by cybercriminals and data from battlefields:

Intelligence Insights Report, September 2025
New
Trend Report
Intelligence Insights Report, September 2025
Explore the most notable cybersecurity events in the region and the best practices
Learn more
Intelligence Insights Report, August 2025
Trend Report
Intelligence Insights Report, August 2025
Explore the most notable cybersecurity events in the region and the best practices
Learn more
Intelligence Insights Report, July 2025
Trend Report
Intelligence Insights Report, July 2025
Explore the most notable cybersecurity events in the region and the best practices
Learn more