Summary
This whitepaper presents findings from an independent survey of 191 IT and cybersecurity leaders in Australia whose organizations experienced ransomware attacks in the previous year. Conducted between January and March 2025, the survey aimed to assess the impact of ransomware on these organizations. Key findings indicate a median ransom demand of $217,000, a significant decrease from the previous year. The report also highlights that 33% of attacks resulted in data encryption, with 98% of affected organizations managing to recover their data. Additionally, the average cost incurred by Australian organizations to recover from ransomware attacks was approximately $650,000. The paper discusses the operational and technical root causes of ransomware incidents, emphasizing the importance of prevention, protection, detection, and response strategies. Recommendations for improving cybersecurity measures are provided, focusing on enhancing defenses against evolving ransomware threats. The report aims to inform organizations about the current ransomware landscape in Australia and guide them in strengthening their cybersecurity posture.
