The State of Ransomware 2025

Insights from 3,400 IT professionals across 17 countries

Discover how the cause and consequences of ransomware have evolved in the past year — and what that means for organizations today.

You’ll learn:

The technical and operational factors that leave organizations exposed to ransomware.
The most popular method to recover encrypted data.
How much of the ransom demand is actually paid – and why some victims are able to pay less than the initial ask.
How ransomware recovery costs have changed over the last year.
The long-term consequences of a successful ransomware attack for the IT/cybersecurity team.

Download the report today and also receive individual country reports to see how ransomware impacts different areas of the world.

State of Ransomware 2025

First Name

Last Name

Business Email

Company

Number of Employees

Job role

Phone number

Country

How Did You Hear About Us?

I agree to all the terms and conditions in the Sophos End User Terms of Use.

Please send me updates about Sophos products, services, free giveaways, invites to special events and other cool stuff. (Unsubscribe at any time using the link located at the bottom of Sophos emails.)

By submitting this form you agree to the Website Terms of Use, consent to be contacted by Sophos and its partners, and acknowledge the Privacy Notice.