<ul><li>Kaspersky reports a decrease in ransomware detections by 18% from 2023 to 2024.</li><li>41.6% of incidents at organizations requiring incident response services were related to ransomware in 2024.</li><li>Ransomware-as-a-Service (RaaS) remains dominant, simplifying attacks for cybercriminals.</li><li>Ransomware groups diversified in 2024, targeting Windows, Linux, and VMware systems.</li><li>While overall ransomware payments decreased, average ransom payments surged in 2024.</li><li>Some ransomware groups shifted focus to data exfiltration alongside encryption.</li><li>Several major ransomware groups faced disruptions in 2024, but new groups quickly emerged.</li><li>Ransomware groups increasingly develop custom toolkits to evade detection.</li><li>Global trends show a shift towards targeted ransomware attacks over general attacks.</li><li>Ransomware is expected to evolve by exploiting unconventional vulnerabilities in 2025.</li></ul>

State of ransomware in 2025

Discover more