The fifth annual Sophos State of Ransomware Report for the year 2024 has provided valuable insights into the real-world experiences of 5,000 organizations worldwide when it comes to ransomware attacks. The report delves into various aspects of these attacks, from their root causes to the severity of the impact, financial losses incurred, and the time taken for recovery.

According to the survey conducted among IT and cybersecurity leaders across 14 countries, this year’s report not only builds upon insights from previous years but also explores new areas of research. It sheds light on ransom demands, payments made to hackers, and the involvement of law enforcement in ransomware remediation efforts.

One key finding from the report is that while the overall rate of ransomware attacks has slightly decreased, the costs associated with recovery have significantly increased. In the previous year, 66% of organizations reported being victims of ransomware, whereas this year, that number has dropped to 59%. However, the average recovery costs – excluding any ransom payments – have surged to $2.73 million, marking a 50% increase from the previous year’s $1.82 million.

Another interesting insight is that only 4% of organizations reported having their entire computer systems encrypted during a ransomware attack. On average, about 49% of a company’s devices are affected in such attacks, highlighting the importance of comprehensive cybersecurity measures.

Furthermore, the report reveals a concerning trend where more than half (56%) of the organizations that fell victim to ransomware admitted to paying a ransom to retrieve their encrypted data. This marks the first time that a majority of victims have resorted to paying hackers for their data. Additionally, the use of backups as a recovery method has slightly decreased, with only 68% relying on this approach compared to 70% in the previous year.

Moreover, the report indicates a significant increase in the number of organizations using multiple methods to recover their data, such as paying the ransom and utilizing backups simultaneously. This shift underscores the evolving strategies employed by organizations to combat ransomware attacks effectively.

In terms of ransom payments, the report found that the average or median payment made by organizations has increased fivefold over the past year, reaching $2 million from $400,000. However, only 24% of respondents stated that their ransom payment matched the original demand, with 44% paying less and 31% paying more than the initial sum requested by hackers.

Overall, the report provides a comprehensive overview of the current state of ransomware attacks and highlights the evolving landscape of cybersecurity threats faced by organizations worldwide. By analyzing the data collected from a diverse range of respondents, the report offers valuable insights into the trends and challenges associated with ransomware incidents in the digital age.

Source link