Meta News

Ransomware Gains Ground in Japan: Qilin Steps Up Its Game

Summary: Japan reported 134 incidents of ransomware in 2025, a 17.5% increase from 2024, with Qilin among the most active actors.

Cisco Talos identifies Japan as particularly pressured by ransomware during 2025. The report tallies 134 incidents, an 17.5% increase over the previous year, and singles out Qilin as one of the more active players.

According to cited data, 22 of these cases were attributed to Qilin, representing 16.4% of the total. That share makes the group a useful reference for understanding how campaigns are evolving: greater activity, higher specialization, and an operation with scalability capabilities.

The report’s interest lies not just in the aggregated figures but in what they suggest for defense: when an actor concentrates a visible portion of incidents, studying their patterns can help improve early detection and sector readiness.

Key facts

  • Japan reported 134 incidents of ransomware in 2025, a 17.5% increase from 2024.
  • Qilin was responsible for 16.4% of the analyzed incidents.
  • Talos Intelligence describes an automated and sophisticated expansion of Qilin.

Why it matters

Provides quantitative context on the pressure faced by the Japanese market and helps gauge Qilin's operational weight in the ransomware scene.

Tags:
ransomware japón qilin

Structured details

  • Location: Japan
  • Industry: cybersecurity
  • Source type: media
  • Claim status: confirmed
  • Verification: claimed_by_source

Source: https://blog.talosintelligence.com/an-overview-of-ransomware-threats-in-japan-in-2025-and-early-detection-insights-from-qilin-cases/

Published on