Skip to main content

CYBERSTATS

Security Intelligence

HomeTopicsRansomware

Ransomware

Statistics and intelligence on ransomware attacks, trends, and prevention strategies across global organizations.

Related Topics

Operational Resilience6Qilin5Financial Services4Ransomware Groups4Ransom4Threat Actors3

Top Vendors

BlackFog107CROWDSTRIKE79GuidePoint Security75NCC Group69AXA XL48Sophos40

Showing 1-20 of 952 results

78% of enterprise servers are reachable over SMB or WinRM, administrative protocols commonly exploited for ransomware spread and lateral movement.

Zero Networks6/15/2026
SMBWinRM

Big game hunting adversaries named 572 technology entities on dedicated leak sites for extortion.

CrowdStrike6/15/2026
ExtortionTechnology Sector

50% of organizations reported ransomware intrusions, down from 54% in 2025.

Fortinet6/15/2026

80% of enterprise servers are reachable from anywhere inside the network, creating greenfield conditions for ransomware, operational disruption, and full-environment compromise.

Zero Networks6/15/2026
Network SecurityLateral Movement

In September 2025, Qilin's compromise of a single South Korean MSP affected 32 financial institutions and resulted in over 2 terabytes of stolen data.

Black Kite6/6/2026
Data TheftQilin

Reported ransomware incidents targeting finance increased 30% from 2024 to 2025.

Black Kite6/6/2026
Financial Services

Direct ransomware attacks on financial institutions spiked 76% year-over-year in Q1 2026.

Black Kite6/6/2026
Financial Services

Banks reported 71 ransomware disclosures in 2023 compared to 44 disclosures by investment firms, while by 2025 banks fell to 36 disclosures and investment firms rose to 84 disclosures (41.6% of all incidents).

Black Kite6/6/2026
Financial Services

Qilin was responsible for 59 finance-sector incidents in the past year.

Black Kite6/6/2026
Threat ActorsQilin

23% of Nordic CISOs cited ransomware or availability disruption as their primary concern.

Truesec5/31/2026
The NordicsOperational Resilience

There were 264 publicly disclosed ransomware attacks in Q1 2026, a 15% decrease year-on-year.

BlackFog5/27/2026
Ransomware Trends

Among undisclosed ransomware attacks in Q1 2026, Qilin led with 339 attacks (16%), The Gentlemen 200 attacks (9%), and Akira 190 attacks (9%).

BlackFog5/27/2026
Ransomware GroupsQilin

There were 2,160 undisclosed ransomware attacks identified in Q1 2026.

BlackFog5/27/2026

Government entities experienced 32 publicly disclosed ransomware attacks (12%) and the technology sector experienced 28 attacks (11%) in Q1 2026.

BlackFog5/27/2026
GovernmentTechnology Sector

Ransomware payouts now average $40 million, nearly triple their level in 2024.

Splunk5/27/2026
Financial Impact

Only one in nine global ransomware attacks were publicly disclosed in Q1 2026.

BlackFog5/27/2026
Public Disclosure

The Gentlemen claimed 273 attacks since its emergence in 2025 through the end of Q1 2026.

BlackFog5/27/2026
Ransomware GroupsThe Gentlemen

79 ransomware groups claimed victims during Q1 2026.

BlackFog5/27/2026
Threat Actors

Undisclosed ransomware attacks increased by 2% year-on-year.

BlackFog5/27/2026
Ransomware Trends

Data exfiltration occured in 96% of ransomware attacks in Q1 2026.

BlackFog5/27/2026
Data Exfiltration