Summary
This whitepaper presents findings from an independent survey of 546 IT and cybersecurity leaders in the United States who experienced ransomware attacks in the past year. Conducted between January and March 2025, the survey highlights key statistics regarding ransom demands and payments, revealing a median ransom demand of $2 million and a median payment of $1.5 million, both reflecting significant decreases from the previous year. The report identifies exploited vulnerabilities and phishing emails as the primary causes of these attacks, with 51% of incidents resulting in data encryption. Additionally, it discusses the operational impacts on organizations, noting that 45% of IT teams reported increased workloads and 44% experienced heightened anxiety. Recommendations for improving defenses against ransomware include enhancing prevention strategies, strengthening protection measures, and ensuring effective detection and response capabilities. The findings underscore the ongoing threat of ransomware and the necessity for organizations to adapt their cybersecurity strategies accordingly.
