Despite low ransomware rates, UAE faces targeted cyberattacks during floods and economic agreements, highlighting need for AI-driven security strategies
The UAE has demonstrated strong cyber resilience with some of the lowest ransomware detection rates globally, according to the Acronis Cyberthreats Report H1 2025. However, the report warns of targeted cyber activity during periods of disruption, such as natural disasters and major trade agreements.
Between January and June 2025, ransomware incidents in the UAE were limited to five or fewer per 10,000 workloads, placing the country among the least affected worldwide. Yet, cyberattacks surged in March 2025, coinciding with the signing of several Comprehensive Economic Partnership Agreements (CEPAs). A brief decline in April suggested improved defenses, but attackers quickly adapted, causing a rebound in May.
This pattern mirrors the aftermath of the record-breaking floods in April 2024, when service disruptions created opportunities for exploitation. The report also found that in May 2025, the UAE had the second-highest percentage of blocked malicious URLs at the endpoint (10.9%), trailing only Canada.
“The UAE continues to demonstrate resilience with some of the lowest ransomware rates globally, but the data shows attackers are quick to exploit moments of disruption, whether natural or economic,” said Ziad Nasr, General Manager, Acronis Middle East.
“As the country accelerates its digital growth and international partnerships, MSPs and enterprises alike must double down on AI-driven detection, proactive vulnerability management, and robust EDR to safeguard critical sectors and ensure long-term resilience.”
The report emphasizes the growing sophistication of cybercriminals, who increasingly use AI to automate phishing, deepfakes, and social engineering attacks, making proactive cybersecurity more critical than ever.
