Cloudflare’s Q2 2025 Internet Trends Report: Key Insights and Security Challenges
Cloudflare has recently released its Global Internet Trends and Insights report for the second quarter of 2025, shedding light on significant shifts in web traffic, cyber threats, and overall security trends both globally and regionally.
Cyber Threats on the Rise
In Q2 2025, Cloudflare’s data indicates an alarming trend in cyber threats, with the company blocking an impressive average of 190 billion threats daily. This marks a 21% increase year over year, despite a notable 23% decrease compared to the first quarter of 2025. The latter decline may be attributed to a surge in threats earlier in the year, as organizations ramped up online activities. Furthermore, the company managed an astounding 5.8 trillion Internet requests each day, showcasing a 9% increase quarter over quarter and a remarkable 40% jump year over year.
Regional Breakdown of Cyber Threats
North America (NAMER)
- Daily Threats Blocked: 1.5 billion
- Year-over-Year Increase: 18%
- Quarter-over-Quarter Change: Decrease of 12%
In North America, the data indicates a steady rise in cyber threats over the year, although a quarterly decline suggests seasonal dynamics may be at play.
Europe, Middle East, and Africa (EMEA)
- Daily Threats Blocked: 62.7 billion
- Year-over-Year Increase: 22%
- Quarter-over-Quarter Change: Decrease of 16%
The EMEA region reflects a significant increase in cyber threats compared to last year, while also experiencing a recent drop in volume.
Asia-Pacific (APAC)
- Daily Threats Blocked: 57.4 billion
- Year-over-Year Increase: 24%
- Quarter-over-Quarter Change: Decrease of 29%
In the Asia-Pacific region, the substantial year-over-year increase points to rising awareness and sophistication in cyber attack methodologies even as threat activity moderated in the short term.
Latin America (LATAM)
- Daily Threats Blocked: 19 billion
- Year-over-Year Increase: 15%
- Quarter-over-Quarter Change: Decrease of 36%
Latin America shows a solid annual increase in cyber threats, but like other regions, it is seeing a decline in the most recent quarter, marking a potential shift in patterns.
Spotlight on the Kingdom of Saudi Arabia (KSA)
In comparison to the first quarter of 2025, KSA saw little change in overall Internet traffic. Nevertheless, there was a 6% decrease in cyber threats over the quarter, signaling fewer targeted attacks in the region.
Daily Request Traffic
- Content Requests Served Daily: 42.6 billion
- Requests Blocked as Cyberattacks: 543 million (1%), marking a 6% decrease from the previous quarter.
Cyber Threats Blocked Daily
- Cyber Threats Blocked: 94 million
- Quarter-over-Quarter Decrease: 76%, a stark contrast to the 890% spike noted in the first quarter due to specific sustained attacks on a project management training firm in the region.
Top Targeted Sectors in KSA
- Internet
- Consumer Goods
- Information Technology and Services
- Airlines/Aviation
Key Defenses Against Application Layer Attacks
- Web Application Firewall (WAF) Rules: 92%
- DDoS Mitigations: 8%
- Most Active WAF Rules:
- HTTP Anomaly: 20%
- Cross-site Scripting (XSS): 10%
- Directory Traversal: 8%
Insights from the United Arab Emirates (UAE)
The UAE experienced a 15% increase in Internet traffic compared to the first quarter of 2025, alongside a 17% rise in mitigated traffic, indicating a higher volume of cyber threats.
Daily Request Traffic
- Content Requests Served Daily: 17.4 billion
- Requests Blocked as Cyberthreats: 787 million (5%), primarily from DDoS attacks, reflecting a 17% increase quarter over quarter.
Cyber Threats Blocked Daily
- Blocked Cyber Threats: 1 billion
- Quarter-over-Quarter Increase: 63%
Top Targeted Sectors in UAE
- Retail
- Consumer Services
- Banking, Financial Services and Insurance (BFSI)
- Information Services
Key Defenses Against Application Layer Attacks
- DDoS Mitigations: 50%
- WAF Rules: 49%
- Most Active WAF Rule Categories:
- HTTP Anomaly: 16%
- SQL Injection (SQLi): 9%
- Cross-site Scripting (XSS): 6%
Conclusion
As articulated by Bashar Bashaireh, AVP for the Middle East, Türkiye, and North Africa at Cloudflare, "Cloudflare’s Q2 data reinforces the dual reality of the Internet today; while usage is accelerating at unprecedented rates, so are the sophistication and frequency of cyber threats." The focus remains on ensuring a secure and reliable Internet experience for users globally.
