Of organizations that were attacked by ransomware, 57% recovered less than 50% of their data.

Pre-attack confidence among ransomware victims often doesn't reflect reality.

69% of organizations believed they were prepared before being attacked by ransomware. Their confidence plummeted by over 20% afterward.

7 out of 10 organizations experienced a ransomware attack in the past year.

Of organizations that were attacked by ransomware, only 10% recovered more than 90% of their data.

There was a noticeable decrease in the median ransom amount paid.

64% of victim organisations did not pay ransoms this year, compared to 50% two years ago.

Ransomware attacks rose by 37% since last year.

The percentage of companies impacted by ransomware attacks has slightly declined from 75% to 69%.

Ransomware is now present in 44% of breaches.

98% of respondents had a ransomware playbook.

CIOs experienced a 30% decline in their ransomware preparedness rating post-attack.

Backup verifications and frequencies were included in ransomware playbook for 44% of organizations.

For organisations without the proper IT and cybersecurity maturity, often SMBs, ransomware is present in 88% of breaches

Of the organizations that experienced a successful ransomware attack last year, 86% admitted they paid a ransom to recover their data.

Extortion following a ransom demand occurred in 12% of cases.

41% of respondents at middle market organisations said their existing security measures were completely successful against ransomware attacks.

X-Force observed a decline in ransomware incidents overall for the third year.

28% of respondents at middle market organisations said their existing security measures were partially successful against ransomware attacks.

Manufacturing had the highest number of ransomware cases in 2024.