Local malware incidents top Rs.3.9mn in 3Q as offline threats persist: Kaspersky

• A quarter of users encounter offline threats
• Country is 53rd globally for exposure to malware spread through offline vectors
• National Cyber Security Strategy 2025-2029 seeks to fortify country’s critical information infrastructure against increasingly complex threat environment

By Nishel Fernando

Sri Lanka recorded over 3.9 million local malware incidents in the third quarter of 2025 alone, with nearly a quarter of users encountering offline threats, new data from global cybersecurity firm Kaspersky reveals.

The findings highlight a persistent vulnerability in the country’s digital landscape: the heavy reliance on removable media. According to Kaspersky, 23.2 percent of users in Sri Lanka faced local threats during this period, placing the island nation 53rd globally for exposure to malware spread through offline vectors.

Unlike the web-based attacks that exploit internet vulnerabilities, these local infections primarily stem from worms and file viruses transmitted via USB drives, CDs and DVDs. The data suggests that despite the rapid shift towards cloud computing and online services, physical device sharing remains a critical weakness for both individuals and businesses.

Kaspersky Managing Director Asia Pacific Adrian Hia noted that while global attention is often fixed on massive online threat landscapes, local infection vectors cannot be ignored. 

“Organisations need to employ multi-layered protection strategies that include antivirus, firewall and device control to effectively combat these threats and safeguard their networks,” Hia said.

The release of this data comes at a pivotal moment for Sri Lanka’s digital governance. Just days before, the Sri Lanka Computer Emergency Readiness Team convened a stakeholder consultation on ratifying the UN Convention Against Cybercrime, a move aimed at strengthening the national legal framework against such digital risks.

This aligns with the government’s broader push under the newly approved National Cyber Security Strategy (2025-2029), which seeks to fortify the country’s critical information infrastructure against an increasingly complex threat environment. 

Earlier this year, reports indicated a sharp 25 percent rise in attacks targeting vulnerable Windows drivers in the first quarter, underscoring the escalating sophistication of cyberattacks facing the local entities.

While Sri Lanka’s infection rate ranks it 53rd—far below the 30 percent-plus infection rates seen in high-risk nations like Turkmenistan and Tajikistan—the volume of 3.9 million incidents serves as a stark warning. 

As the country expands its digital footprint, the data reinforces the need for businesses to look beyond basic antivirus software and adopt comprehensive device management policies to mitigate the risks from physical media.