Gen’s latest threat report for the second quarter of 2025 details a significant surge in cyber threats ranging from cryptocurrency scams to sextortion and data breaches across both global and New Zealand contexts.
The analysis, compiled by Gen’s team of cybersecurity researchers, recorded a substantial year-on-year increase in scams and malicious activity, suggesting that both criminal tactics and the scale of potential harm are evolving, largely fuelled by economic pressure and the availability of AI-powered tools.
Crypto scams and economic uncertainty
According to Gen, crypto scams have become an area of particular concern, with blocked attacks rising from thousands to millions within a few short months. The reported increase was 69,508% globally, with New Zealand experiencing an even sharper uptick of 77,721%, markedly above the worldwide average.
“This quarter’s global trends reveal a troubling surge in cyber threats, from AI-powered ransomware to cryptocurrency scams and sextortion,” said Mark Gorrie, Managing Director APAC for Gen Digital. “With the rise of AI and widespread data breaches, scams have become faster, more personalised, and harder to spot. New Zealand is not immune to these trends.”
Gorrie added, “In a weaker economy, people facing financial uncertainty are increasingly drawn to quick fixes like crypto, creating fertile ground for scammers to exploit.”
Sextortion and personalisation
The report highlights a 170% rise in sextortion scams within New Zealand during Q2/2025, compared to a 100% global increase.
New Zealand now ranks 19th on Gen’s list of the top 20 countries most at risk of sextortion. This list spans a diverse range of affected countries, including Japan, Czechia, Singapore, and South Africa.
Sextortion scams typically involve criminals threatening to release compromising content unless a ransom, often in cryptocurrency, is paid. Recent tactics reportedly include the use of personal data harvested from major breaches, along with the manipulation of services such as Google Maps to make threats appear more credible and invasive.
Attackers have used actual names, addresses, and email addresses to heighten victims’ anxiety and pressure them into complying with demands.
Facebook and technical support scams
Elsewhere, the report identified a significant rise in scams exploiting social media. Worldwide, 14% of blocked Facebook-related threats in Q2/2025 were tied to so-called Technical Support Scams.
These frequently present as fake Messenger-style pages that attempt to lock browsers and prompt users to call fraudulent help lines, leveraging Facebook’s global reach and advertising platform for scalability.
Push notifications and phishing
In New Zealand, there was a 278% rise in malicious push notifications during the quarter. These deceptive pop-ups, often disguised as system alerts or video players, direct users to phishing websites or trigger unwanted downloads. The tactic is being increasingly employed to lure users into scams or malware installations.
“Scammers are counting on panic clicks; they exploit the split second where you react before you think. And that single click can take a person straight to a scammer’s doorstep,” Gorrie explained. “If an alert feels aggressive or off, trust your instincts and double-check through your antivirus software directly, and avoid giving notification permissions to untrusted websites.”
AI involvement and ransomware
Gen also revealed that Q2/2025 saw the takedown of the first known ransomware strain built with the assistance of generative AI.
The malware, named FunkSec, managed to encrypt data and demand payment, but Gen’s research team was able to discover a cryptographic flaw and, in coordination with law enforcement, help victims restore their files without payment using a free decryptor issued by Avast. Since this intervention, there has been no reported activity from the FunkSec group.
Other key findings
The global threat landscape continues to expand, as highlighted by a 21% rise in data breach events, and almost a 16% increase in breached email addresses. The report also notes that financial scams climbed by 340% and that small businesses continue to be vulnerable to infostealers, exploits, and remote access attacks.
Of particular concern is the resurgence of older threats such as DealPly adware in markets including the United States, Brazil, France, and India. Malvertising and various scam types – especially phishing, generic scams, and e-shop or dating scams – ranked among New Zealand’s top threats for the quarter.
Remote access attacks grew by 62% and malicious push notifications spiked by 317% globally, indicating a broadening portfolio of tactics used by cybercriminals.
Efforts to counter these risks are ongoing, with Gen’s researchers continuing to collaborate on threat mitigation tools and public awareness campaigns.