What's Happening?
Ransomware payments have significantly decreased in the third quarter of 2025, with the average payment dropping by 66% compared to the previous quarter. This decline is attributed to large enterprises
refusing to pay ransoms and mid-market organizations negotiating smaller payments. The professional services sector remains the most targeted, and the number of data leak websites has reached an all-time high. Despite a slight increase in ransomware incidents, the overall success rate of cyber extortion is contracting.
Why It's Important?
The reduction in ransomware payments indicates progress in cybersecurity resilience and the effectiveness of law enforcement and cyber defense efforts. Organizations are becoming more aware of the limited utility of paying ransoms, which may deter cybercriminals from pursuing such attacks. However, the persistent threat of ransomware underscores the need for continued vigilance and investment in cybersecurity measures to protect against evolving tactics.
What's Next?
Organizations are encouraged to strengthen their cybersecurity frameworks and incident response strategies to mitigate the impact of ransomware attacks. Collaboration between public and private sectors may enhance threat intelligence sharing and improve defenses. As cybercriminals adapt to changing circumstances, ongoing research and development of advanced security technologies will be crucial in maintaining resilience against ransomware threats.
