Ransomware now plays a role in nearly half of all breaches, new research finds
Ransomware is wreaking havoc like never before, being involved in a whopping 44% of all data breaches last year, according to the latest findings from Verizon. Their 2025 Data Breach Investigations Report (DBIR) highlights how, while hackers continue to gain access through legitimate means, ransomware has made its grim presence felt more than ever.
The good news? More victims are saying “no thanks” to paying ransoms, with 64% refusing to fork out cash, and the amounts being paid are also significantly down. Now, let’s dive into the details.
Key Points
- Ransomware was involved in 44% of data breaches last year, up from one-third in 2023.
- 64% of ransomware victims did not pay ransoms, a rise from 50% two years ago.
- The median ransom paid has dropped to $115,000, down from $150,000 last year.
- Small and medium-sized businesses were disproportionately affected, with 88% of breaches involving ransomware.
- 95% of ransoms paid are under $3 million, compared to nearly $10 million last year.
- Ransomware is affecting all industries, particularly financial firms, manufacturing, and local governments.
Why should I read this?
If you care about cybersecurity (and let’s face it, you should!), this article lays out some serious trends in ransomware that could hit your business or organisation. It’s a real eye-opener about what’s happening in the cyber threat landscape. With more companies standing firm against ransom demands, it shows a shift in mentality that could influence how future breaches play out. So, give it a read—you’ll be glad you did!