infographic
Key findings and trends to watch in 2025:
• Law enforcement is forcing threat actors to adapt: In 2024, coordinated efforts by law enforcement agencies led to significant disruptions in major ransomware groups, such as LockBit and BlackCat. However, the rise of smaller groups and independent attackers has increased, necessitating ongoing vigilance.
• Data exfiltration attacks grow: The report notes a troubling trend toward exfiltration-only attacks – when cybercriminals break into an organisation’ s network but do not encrypt or lock the data Instead, they focus on stealing sensitive information – like personal data, financial records or intellectual property – and transferring it outside the organisation. Organisations with weak cybersecurity measures are particularly vulnerable, as threat actors rapidly exploit vulnerabilities, often within hours.
• Ransomware payments are decreasing: The total value of ransomware payments fell in 2024, with 36 % of affected organisations opting not to pay a ransom. Of those that did pay, 82 % paid less than the initial ransom and 60 % paid less than half that sum, emphasising the importance of robust recovery strategies.
• Legal consequences of ransom payments are emerging: New regulations and legal frameworks are discouraging ransom payments, with initiatives like the International Counter Ransomware Initiative urging organisations to strengthen their defences rather than capitulate to attackers.
• Collaboration reinforces resilience against ransomware: Enhanced communication between IT operations and security teams, along with partnerships with law enforcement and industry players, has proven vital in fortifying defences against ransomware.
• Budgets rise for security and recovery, but more is needed: While organisations are allocating more resources to security and recovery efforts, there remains a significant gap in investment relative to the growing threat landscape.
WWW. INTELLIGENTCISO. COM 23