Cyber-crime increasingly coming with threats of physical violence

A US security professional recently received a chilling warning: a package delivered to his home contained a threat of physical violence if he didn’t comply with ransom demands during negotiations for a government cyberattack victim. The incident highlights a disturbing trend—ransomware gangs are increasingly pairing digital extortion with real-world intimidation, exploiting personal data like home addresses and Social Security numbers to terrorize employees. Cyberattacks surged globally in 2025, with the FBI reporting 1,008,597 incidents in the US alone, up from 288,012 in 2015, and financial losses totaling $20.8 billion. The UK also faced record cyber threats, yet the shift toward physical coercion is particularly alarming: FBI data shows US cases of violence-linked threats more than doubled last year. Semperis’ research found 46% of US ransomware attacks in 2025 included explicit physical harm threats, compared to a 40% global average. In one case, hackers targeted hospital staff by calling nurses directly, revealing intimate details like home addresses and Social Security numbers to create fear. Another group demonstrated control over industrial machinery—turning robots and conveyor belts on and off—to imply potential lethal consequences for non-compliance. While state-sponsored actors from Russia, China, Iran, and North Korea are involved, most threats stem from financially motivated gangs, often composed of young hackers aged 17–25 who outsource intimidation tactics. The escalation reflects a broader strategy: criminals now leverage personal data breaches to bypass corporate defenses, exploiting fear to pressure victims into paying ransoms. Semperis’ Tim Beasley noted the trend has evolved from background threats to a tangible reality, with attackers increasingly using physical coercion as a weapon. Experts warn that without stronger safeguards, the blend of cyber and physical threats could further destabilize organizations and endanger lives.