AI accelerates both attacks and defences, but critical security gaps persist

Delinea has unveiled new research highlighting how ransomware attacks have continued to surge over the past year, despite fewer victims paying. Over two-thirds (69%) of organisations globally have fallen victim to ransomware, with 27% being hit more than once. Meanwhile, attackers are harnessing AI to automate, scale, and sharpen their operations.

  • Friday, 30th May 2025 Posted 1 day ago in by Phil Alsop

Based on insights from over 1,000 IT and security leaders worldwide, the 2025 State of Ransomware Report reveals an increasingly volatile threat landscape driven by AI-powered attacks, stolen credentials, and Ransomware-as-a-Service (Raas). While only 57% of organisations paid ransoms, down from 76% in 2024, the frequency and impact of attacks continued to grow as threat actors turned to other tactics like extortion, with 85% of ransomware victims threatened with exposure.

“Ransomware has evolved into a shape-shifting, AI-enabled threat that no business can afford to underestimate,” said Art Gilliland, CEO at Delinea. “In order to combat the sophistication of today’s attacks, organizations must fight AI with AI and embrace proactive, identity security strategies like zero trust architecture, Privileged Access Management, and continuous credential monitoring to stay ahead.”

AI: The Double-Edged Sword

The report highlights the growing role of AI on both sides of the ransomware equation. Threat actors are using AI to automate phishing, impersonate trusted individuals via deepfakes, and accelerate attacks. At the same time, defenders are increasingly relying on AI to detect and respond to threats faster, with 90% of organisations now using AI in their ransomware defence strategies – primarily within Security Operations Centres (64%), for analysing Indicators of Compromise (62%), and to prevent phishing (51%).

Despite 90% of executives expressing concern over ransomware threats, many organisations continue to fall short in essential security practices, with only 34% enforcing least privilege access controls and just 57% implementing application control measures. Most victims reported extended recovery times, with 75% taking up to two weeks to recover.

Why most businesses aren’t yet winning with AI

Posted 1 day ago by Phil Alsop
71% of business leaders say their workforces are not ready to successfully leverage AI.
Five9 has released its 2025 Business Leaders Customer Experience Report offering analysis of CX trends shaping how global business leaders create...
96% of tech professionals view AI agents as a growing security risk, yet 98% of organisations plan to expand adoption.

Opportunities to optimise ServiceNow operations

Posted 1 day ago by Phil Alsop
xtype’s 2025 State of ServiceNow Operations Report identifies key optimisation areas as organisations expand their ServiceNow implementations.

AI is now the leading security concern

Posted 6 days ago by Phil Alsop
AI surpasses ransomware as the top concern, as organizations navigate the double-edged sword of innovation and risk.

Workforce crisis sparks debate over HR & IT merger

Posted 6 days ago by Phil Alsop
New study of global tech leaders finds IT leaders believe combining functions could boost productivity and engagement.
Cyware survey identifies significant gaps in internal collaboration, tool integration, and automation — with only 13% confident their systems...
Seventy-seven per cent of engineering leaders identify building AI capabilities into applications to improve features and functionality as a...