India was among the top five countries most affected by the WannaCry ransomware outbreak, according to a report by cybersecurity company F-Secure. The report noted that ransomware attacks increased in volume by more than 400 per cent compared with the previous year.

The cybersecurity firm attributed much of this growth to the WannaCry crypto worm but observed that other ransomware incidents became less frequent as the months progressed, showing a shift in how cybercriminals are using the malware.

The report found that ransomware continued to evolve as a significant cyber threat. Prominent variants included established families such as Locky, Cryptolocker and Cerber. However, WannaCry stood out as the most frequently detected ransomware strain, accounting for nine out of every ten ransomware reports by the end of the period.

EVENT

Saksham Bharat 2026

A multi-stakeholder dialogue on skilling gap in Cybersecurity, Data Resilience and AI — and the roadmap to a Saksham Bharat.

📅 Tue, 26 May 2026

📍 Mumbai, Bengaluru, Delhi

EVENT

VeeamON 2026 Tour India - Mumbai

A VeeamON 2026 India Leadership Series Mumbai for senior public sector and government technology leaders.

📅 Tue, 26 May 2026

📍 Grand Hyatt, BKC

EVENT

Cyber Surakshit Uttar Pradesh

Find out strategies, frameworks and solutions for building a resilient and secure digital ecosystem across Uttar Pradesh.

📅 Thu, 28 May 2026

📍 Lucknow

EVENT

VeeamON 2026 Tour India - Bengaluru

A VeeamON 2026 India Leadership Series Bengaluru for senior public sector and government technology leaders.

📅 Wed, 03 Jun 2026

📍 JW Marriott Hotel

EVENT

VeeamON 2026 Tour India - Delhi

A VeeamON 2026 India Leadership Series Delhi for senior public sector and government technology leaders.

📅 Fri, 19 Jun 2026

📍 Shangri-La Eros

EVENT

Infosec Reimagined

Infosec Reimagined 2026 is the premier information security summit where top leaders—CISOs, CROs, CIOs, CTOs and risk executives—converge to redefine cyber resilience.

📅 Fri, 26 Jun 2026

📍 New Delhi

EVENT

Digital Senate

Digital Senate is a premier conference uniting government leaders, technologists and innovators to share ideas, success stories and strategies on digital governance, public sector transformation, cybersecurity and emerging technologies in India.

📅 Thu, 30 Jul 2026

📍 New Delhi

EVENT

CIO Prism

CIO Prism unites forward-thinking technology leaders to exchange transformative insights, shape digital strategies, and foster innovation, empowering enterprises to excel in an era of rapid technological change.

📅 Fri, 18 Sep 2026

📍 Goa

While the WannaCry ransomware family remained widespread in the latter half of the year, the use of other ransomware by cybercriminals appeared to decline. F-Secure Security Advisor Sean Sullivan said this pattern suggests that many amateur hackers have lost interest in ransomware.

WannaCry ransomware

“After the summer, there was a noticeable shift away from the kind of ransomware activity we had seen in the previous year or two,” said Sullivan.

“In the past few years, cybercriminals created numerous new ransomware variants, but that activity slowed after last summer. It seems the ransomware gold rush mentality has ended, although hardened extortionists continue to use ransomware, particularly against organisations. WannaCry revealed how vulnerable many companies remain,” he said.

The report added that while ransomware incidents were showing signs of decline, there was growing evidence that attacks were becoming more targeted towards corporate networks. This includes attempts to compromise organisations through exposed RDP ports.

SamSam ransomware

The SamSam ransomware family is known for this method and has already infected several US-based organisations, including the IT systems of the city of Atlanta in a recent attack.

According to Sullivan, several factors are driving this shift in criminal behaviour. “The rising value of bitcoin has made crypto mining more appealing and possibly less risky for cybercriminals.

Revenues from ransomware may also be falling as greater awareness has encouraged individuals and companies to maintain reliable backups, and as scepticism grows about whether criminals will actually decrypt data as promised.

Yet cybercriminals will always pursue easy opportunities, and they could return to ransomware if conditions become favourable again.”

Editor’s note: The image accompanying this article has been updated.

India among top ransomware targets as WannaCry reshapes cybercrime

Exclusive

AI Is the New Enterprise Operating System

Why Zero Trust could become India’s public sector tech backbone

Modernizing SAP and Oracle for the AI Era: What CIOs Must Do Differently Now

Why AI Coding Tools Need Guardrails, Not Just Good Prompts

WannaCry ransomware

SamSam ransomware

ALSO READ

Most Firms Overestimate Cyber Recovery Readiness, Survey Finds

Apple, Nvidia, Tesla supplier breach claims expose IP risks, security executive says

Telcos see surge in ransomware and espionage in 2025

Govt steps up cyber security measures to counter ransomware and cross-border threats

Bitcoin as balance sheet strategy: Hive CFO Darcy Daubaras

Latest in TECH

AI agents break legacy security models, Veeam CEO warns at VeeamON

Tech leaders urge human-centric AI adoption on National Technology Day

India Must Build AI for Its 490 Million Informal Workers, Say Experts

India’s AI Moment Is Now a Test of Trust, Security and Real-World Use

AI in India: Leaders Say Trust, Not Speed, Will Define Success

RELATED ARTICLES

ABOUT US

TOPICS

BRAND SOLUTIONS

Headlines in Your Inbox

Comments

India among top ransomware targets as WannaCry reshapes cybercrime

WannaCry ransomware

SamSam ransomware

Get the day's headlines from Tech Observer straight in your inbox

Subscribe to our Newsletter

RELATED ARTICLES

Comments