Government Agencies Face Soaring Costs in Ransomware Attacks
Curated by THEOUTPOST
On Sat, 20 Jul, 4:01 PM UTC
2 Sources
2 Sources
[1]
The price of ransomware attacks is skyrocketing and government agencies are paying the most
This story is available exclusively to Business Insider subscribers. Become an Insider and start reading now. Have an account? Log in. Almost 60% of respondents told Sophos that ransomware attackers had targeted their organization this year. That's a slight decrease from 66% for the same period in 2023. But the companies that do fall victim to ransomware attacks are paying out more money than ever, the study found. More than 1,000 of the surveyed organizations said they paid the ransom after hackers compromised their data. IT and telecom companies reported the lowest median ransom payment at $300,000, while lower education and government agencies posted the highest with a median of $6.6 million. Professional business and financial services were the most likely to successfully reduce ransom demands through negotiation. Higher education institutions, on the other hand, were the most likely to pay more than the original demand. "It may be that these industries are less able to access professional ransom negotiators to help reduce their costs," the study's authors said. "They may also have a greater need to recover the data 'at any cost' due to their public remit." Researchers say advancements in AI will likely increase the scale of ransomware attacks. In April, researchers from the Institute for Security and Technology told the House Financial Services subcommittee that they have "tremendous concern" about the role AI could play in future attacks, according to The Hill. Typically, ransomware groups target large companies with revenue greater than $5 billion, but smaller organizations are starting to become more likely targets, according to the study. In the last year, organizations with less than $10 million in revenue made up about 47% of those hit by ransomware attacks, Sophos found. "While many ransomware attacks are executed by sophisticated, well-funded gangs, the use of crude, cheap ransomware by lower-skilled threat actors is on the rise," Sophos says.
[2]
The price of ransomware attacks is skyrocketing and government agencies are paying the most | Business Insider India
Ransomware attacks are getting expensive. And it's local governments and public colleges that are handing over the most cash. Sophos, a UK-based software security company, released its annual ransomware report this week. It details a steep increase in payouts for ransomware attacks in recent years. Ransomware attacks typically come from criminals who hack into companies to steal data, which they hold until the victim agrees to pay a fee. The attacks leave the victims unable to access the stolen data, which can cripple the institution until the ransom is paid. Almost 60% of respondents told Sophos that ransomware attackers had targeted their organization this year. That's a slight decrease from 66% for the same period in 2023. But the companies that do fall victim to ransomware attacks are paying out more money than ever, the study found. More than 1,000 of the surveyed organizations said they paid the ransom after hackers compromised their data. IT and telecom companies reported the lowest median ransom payment at $300,000, while lower education and government agencies posted the highest with a median of $6.6 million. Professional business and financial services were the most likely to successfully reduce ransom demands through negotiation. Higher education institutions, on the other hand, were the most likely to pay more than the original demand. "It may be that these industries are less able to access professional ransom negotiators to help reduce their costs," the study's authors said. "They may also have a greater need to recover the data 'at any cost' due to their public remit." Researchers say advancements in AI will likely increase the scale of ransomware attacks. In April, researchers from the Institute for Security and Technology told the House Financial Services subcommittee that they have "tremendous concern" about the role AI could play in future attacks, according to The Hill. Typically, ransomware groups target large companies with revenue greater than $5 billion, but smaller organizations are starting to become more likely targets, according to the study. In the last year, organizations with less than $10 million in revenue made up about 47% of those hit by ransomware attacks, Sophos found. "While many ransomware attacks are executed by sophisticated, well-funded gangs, the use of crude, cheap ransomware by lower-skilled threat actors is on the rise," Sophos says.
Share
Share
Copy Link
Recent reports reveal a significant increase in ransomware attack costs, with government agencies bearing the brunt of these escalating expenses. The trend highlights growing cybersecurity concerns across various sectors.
Rising Costs of Ransomware Attacks
Ransomware attacks have become increasingly costly, with government agencies emerging as the primary targets paying the highest ransoms. According to recent data, the average ransom payment has surged to $1.54 million in 2023, marking a substantial 70% increase from the previous year 1.
Government Agencies: The Prime Targets
Government agencies have been hit particularly hard, with an average ransom payment of $2.1 million in 2023. This figure represents a staggering 140% increase compared to 2022, highlighting the escalating threat faced by public sector organizations 1.
Sectoral Breakdown of Ransomware Costs
While government agencies top the list, other sectors have also experienced significant increases in ransom payments:
- Professional services: $2 million average payment
- Healthcare: $1.5 million average payment
- Manufacturing: $1.1 million average payment 2
Factors Contributing to the Surge
Several factors have contributed to the rising costs of ransomware attacks:
- Increased sophistication of cybercriminal tactics
- Growing reliance on digital infrastructure
- Potential for significant disruptions to critical services
- Pressure to restore systems quickly, especially in government and healthcare sectors 1
Impact on Organizations
The consequences of these attacks extend beyond financial losses. Organizations face:
- Operational disruptions
- Reputational damage
- Data breaches and potential legal ramifications
- Increased cybersecurity spending 2
Cybersecurity Measures and Recommendations
In light of these escalating threats, cybersecurity experts recommend:
- Regular system updates and patch management
- Robust backup and recovery systems
- Employee training on cybersecurity best practices
- Implementation of multi-factor authentication
- Collaboration with cybersecurity firms for enhanced protection 1 2
As ransomware attacks continue to evolve and target critical infrastructure, organizations, especially government agencies, must prioritize cybersecurity measures to mitigate risks and protect sensitive data from increasingly sophisticated threats.
Reference
[1]
AI-Powered Cybersecurity: The New Frontier in Combating Ransomware Threats
As ransomware attacks evolve, cybersecurity experts turn to AI-based solutions. The integration of artificial intelligence in security postures marks a significant shift in the fight against sophisticated cyber threats.
3 Sources
3 Sources
India Faces Escalating Cybersecurity Challenges: Trend Micro and Zscaler Reports Highlight Ransomware and Malware Threats
Recent reports from Trend Micro and Zscaler reveal India's growing vulnerability to cyber threats, ranking high globally in email, ransomware, and malware attacks. Key sectors like manufacturing, banking, and government face significant risks.
2 Sources
2 Sources
AI Accelerates Hacking: New Research Reveals Faster Breaches and Shifting Cybercrime Tactics
Recent research by ReliaQuest highlights how AI is transforming cybercrime, enabling hackers to breach systems faster and shift tactics from ransomware to data theft. The study also reveals emerging threats like voice phishing and emphasizes the need for enhanced cybersecurity measures.
2 Sources
2 Sources
Ransomware Threat Landscape Evolves: 30% Increase in Active Groups and AI's Growing Role in Cybercrime
Secureworks' 2024 State of the Threat Report reveals a significant rise in ransomware groups, changes in attack strategies, and the increasing use of AI in cybercrime, highlighting new challenges for cybersecurity.
2 Sources
2 Sources
Microsoft Warns of Escalating Cyber Threats: 600 Million Daily Attacks and Evolving Tactics
Microsoft's Digital Defense Report 2024 reveals a surge in cyber attacks, with nation-states and cybercriminals employing advanced tactics, including AI. The report highlights the need for enhanced cybersecurity measures and collaboration.
3 Sources
3 Sources
Your one-stop AI hub
The Outpost is a comprehensive collection of curated artificial intelligence software tools that cater to the needs of small business owners, bloggers, artists, musicians, entrepreneurs, marketers, writers, and researchers.
The Outpost
Keep in touch
© 2025 TheOutpost.AI All rights reserved