The Baltic states are not among the countries most frequently targeted by cyberattacks, said Renāte Strazdiņa, representative of Microsoft NTO Europe North Multi-country Cluster.
However, Strazdiņa notes that attackers are not resting – they are rapidly mastering the latest technologies, including artificial intelligence (AI), to improve and accelerate their attack methods.
According to data from Microsoft’s Digital Defense Report for the first half of 2025, Latvia ranks 64th worldwide among countries whose users have most frequently become targets of cyberattacks. Estonia ranks 63rd, while Lithuania ranks 53rd.
Strazdiņa points out that a shift is being observed – cyberattackers are increasingly targeting not only government institutions but also small and medium-sized enterprises, often through activities carried out by state-sponsored groups.
Microsoft notes that
hospitals, educational institutions, and municipalities are becoming more frequent targets
of cyberattacks because they handle sensitive data and often have limited cybersecurity resources.
The consequences of such attacks can delay medical care, disrupt the educational process, and halt public transportation services.
Ransomware operators exploit these vulnerabilities, as organizations in such sectors often pay the ransom quickly to restore operations as soon as possible.
The report’s data show that over 52% of targeted cyberattacks are conducted using extortion and ransomware, while espionage attacks account for 4% of all cybercrimes.
Today’s cyberattackers are mostly opportunistic criminals seeking financial gain,
rather than state-sponsored actors. In 80% of cases, attackers aim to obtain personal data, highlighting the universal nature of this threat, the company notes.
Microsoft adds that, although most attacks are carried out by criminals, state-sponsored groups continue to target strategically important sectors and regions, primarily for espionage, but often also for financial gain.
Both attackers and cybersecurity professionals are increasingly using artificial intelligence.
Cybercriminals employ AI for automating phishing and creating synthetic or manipulated content, while security specialists use it to eliminate detection gaps and protect users, the company explains.
Microsoft emphasizes that,
as cyber threats grow more complex, organizations must continuously improve their defense systems
and share intelligence.
At the same time, governments should establish clear regulations that impose real consequences for malicious activities and promote greater transparency among all involved parties.
The report also shows that outdated security solutions are no longer effective.
Modernizing defense systems and ensuring close cooperation between industry and government institutions are critically important for strengthening cybersecurity.
At the individual level, using multi-factor authentication (MFA)—particularly phishing-resistant solutions—can prevent more than 99% of identity thefts and related attacks, according to Microsoft.
Read also: Latvia’s Saeima to begin reviewing next year’s budget with 18 billion euros in spending and a sizable deficit