Ransomware attacks soar 82% in one year, with average payment up 400%

Businesses are facing an unprecedented threat from ransomware attacks, with downtime now averaging 24 days per incident and ransom demands skyrocketing by 400%, according to the latest industry insights from cybersecurity firm, Certes.

  • Thursday, 20th March 2025 Posted 2 months ago in by Phil Alsop

As cybercriminals evolve their tactics, leveraging AI-driven attacks and large-scale data exfiltration, organisations must rethink their cybersecurity strategies to protect not just their networks, but their data itself.

The data reveals a concerning upward trend in ransomware incidents, with a staggering 82% increase in attacks in the past year alone. In January 2025, there were 510 reported ransomware victims, up from 280 in January 2024. Despite increased global efforts to tackle the issue, ransomware groups continue to emerge, employing increasingly sophisticated techniques to breach defences and hold businesses to ransom.

The impact of these attacks extends beyond financial losses. Prolonged operational downtime, reputational damage, and regulatory penalties are among the many risks enterprises face. High-profile cases such as the Ticketmaster and Ministry of Defence breaches highlight the vulnerabilities across industries, from large corporations to critical government infrastructure.

“Traditional network security is no longer enough,” said Simon Pamplin, CTO at Certes. “Attackers aren’t just breaching firewalls; they are targeting data directly. Businesses need to shift their focus towards securing their most valuable asset, the data, rather than just defending the perimeter.”

Ransomware attacks are particularly prevalent in data-rich and high-value sectors, including large charities and financial institutions, where cybercriminals see greater potential for ransom payments. The UK has become a key target, experiencing 5% of the world’s ransomware attacks, while the US remains the primary target, accounting for over 50% of incidents.

“The statistics are alarming,” continued Simon. “Beyond the immediate cost of a ransom payment, businesses suffer from lost productivity, eroded customer trust, and in many cases, regulatory fines. The reality is that 80% of organisations that pay a ransom experience another attack soon after. Prevention is key, and that means taking a more holistic approach to cybersecurity.”

With the continued evolution of ransomware tactics, including generative AI and LLM-driven attacks, businesses must adopt a proactive stance. Experts predict that 2025 will see a further escalation in attack volumes, forcing organisations to adapt their security strategies.

“Cyber resilience is no longer optional,” said Simon. “Businesses must invest in robust data protection strategies that go beyond standard defences. The future of cybersecurity is not just about keeping attackers out, it’s about ensuring your data is protected, wherever it resides.”

Why most businesses aren’t yet winning with AI

Posted 1 day ago by Phil Alsop
71% of business leaders say their workforces are not ready to successfully leverage AI.
Five9 has released its 2025 Business Leaders Customer Experience Report offering analysis of CX trends shaping how global business leaders create...
Delinea has unveiled new research highlighting how ransomware attacks have continued to surge over the past year, despite fewer victims paying. Over...
96% of tech professionals view AI agents as a growing security risk, yet 98% of organisations plan to expand adoption.

Opportunities to optimise ServiceNow operations

Posted 2 days ago by Phil Alsop
xtype’s 2025 State of ServiceNow Operations Report identifies key optimisation areas as organisations expand their ServiceNow implementations.

AI is now the leading security concern

Posted 1 week ago by Phil Alsop
AI surpasses ransomware as the top concern, as organizations navigate the double-edged sword of innovation and risk.

Workforce crisis sparks debate over HR & IT merger

Posted 1 week ago by Phil Alsop
New study of global tech leaders finds IT leaders believe combining functions could boost productivity and engagement.
Cyware survey identifies significant gaps in internal collaboration, tool integration, and automation — with only 13% confident their systems...