Key Takeaways 24% of organizations reported a ransomware attack this year, up from 18.6% in 2024. The rise is fueled by AI-powered automation and sophisticated phishing techniques.
Phishing is the leading attack vector in 2025, with 46% of organizations reporting phishing as the cause of a ransomware attack. Other attack vectors include stolen credentials, compromised endpoints, and exploited vulnerabilities.
Organizations have become more resilient against ransomware, with 62% utilizing immutable backups and 82% having disaster recovery plans in place by 2025. As a result, only 13% paid ransoms, down from 16.3% in 2024. Yet, organizations require more user training and the adoption of ransomware insurance.
Effective ransomware protection strategies include regular data backups, employee phishing awareness training, multi-factor authentication, timely software updates, and endpoint security solutions.
Artificial intelligence has enabled hackers to create more sophisticated phishing campaigns and circumvent traditional defenses. It’s no surprise that ransomware attacks are increasing now, after several years of decline.
According to Hornetsecurity’s Ransomware Impact Report, 24% of surveyed organizations have reported ransomware attacks in 2025, compared to 18.6% in 2024. This marks the end of a multi-year decline.
We examined the report more closely to understand why ransomware attacks are increasing, identify the most common attack methods, and explore how you can better prepare to fight this growing threat.
Ransomware Attacks Are Rising
Each year, Hornetsecurity conducts an in-depth global survey to uncover key trends, patterns, and insights into the shifting dynamics of ransomware attacks.
Between 2022 and 2024, the number of ransomware incidents followed a steady downward trajectory.
... continue reading