Ransomware
Cybersecurity statistics about ransomware
Showing 701-720 of 967 results
Ransomware rose by 21% in 2024.
The healthcare sector dropped out of the top five most targeted industries by ransomware for the first time since Q2 2022.
Ransomware victim numbers remain elevated year-over-year (+43%).
The number of active ransomware groups climbed from 45 in Q2 2024 to 71 in Q2 2025.
Akira showed a 348% rise in the number of organizations named in Q2 2025 compared to the same period last year.
Akira has already listed 15% more victims in the first half of 2025 than it did throughout the entirety of 2024.
Q2 2025 saw a 31% decrease in named ransomware victims compared to the previous quarter, marking a return to more typical levels.
Construction was the third most targeted sector by ransomware in Q2 2025.
Retail trade accounted for only 4% of total ransomware victims in Q2 2025.
Germany rose to second most targeted country by ransomware in Q2 2025, climbing two spots from fourth in Q1 2025.
Akira listed approximately 130 organizations to its data-leak site each quarter in 2025.
Qilin showed an 80% increase in activity in Q2 compared to Q1 2025.
Qilin emerged as the top ransomware threat in Q2 2025.
SafePay's activity increased by 42% in Q2 2025 compared to Q1 2025.
In Q1 2025, Clop named 389 victims on its data-leak site in February alone.
DragonForce activity was up 119% between Q1 and Q2 2025.
80% of the organizations named by Qilin in Q2 were based in the US.
DragonForce emergence: December 2023.
LockBit named just 24 organizations on its data-leak site in Q2 2025. This figure represents only 11% of its Q2 2024 victim count.
Lynx experienced a 41% drop in activity between Q1 and Q2 2025.