A recent report by Veeam highlights that nearly 70% of organisations experienced cyber-attacks in the past year, despite advancements in their cybersecurity measures. The findings, presented in the "From Risk to Resilience: Veeam 2025 Ransomware Trends and Proactive Strategies Report," reveal a concerning landscape for businesses as they navigate increasingly sophisticated cyber threats.
Key findings
- High attack rates: The report indicates that while the percentage of companies affected by ransomware attacks has decreased from 75% to 69%, the threat remains significant. This decline is attributed to better preparation and collaboration between IT and security teams.
- Recovery challenges: Among organisations that faced attacks, only 10% managed to recover more than 90% of their data. In contrast, 57% recovered less than half of their data, underscoring the need for effective recovery strategies.
- Emerging threats: The report notes a rise in exfiltration-only attacks, where cybercriminals steal sensitive information without encrypting it. This trend poses a particular risk to organisations with weak cybersecurity measures.
- Decreasing ransom payments: The total value of ransomware payments has fallen, with 36% of affected organisations choosing not to pay a ransom. Among those that did, 82% paid less than the initial demand, highlighting the importance of robust recovery plans.
- Regulatory pressures: New legal frameworks are emerging that discourage ransom payments, pushing organisations to strengthen their defenses instead of capitulating to attackers.
- Collaboration is key: Enhanced communication between IT and security teams, along with partnerships with law enforcement, is crucial for building resilience against ransomware attacks.
Recommendations
To combat these persistent threats, organisations are encouraged to adopt proactive cybersecurity strategies, including:
- Implementing robust backup and recovery solutions.
- Fostering collaboration across departments.
- Regularly training staff to ensure preparedness for potential attacks.
The report emphasises the importance of transitioning from reactive to proactive data resilience strategies to effectively mitigate risks associated with ransomware.
As cyber threats continue to evolve, organisations must prioritise their cybersecurity measures to protect against the growing landscape of attacks.