英文【卡巴斯基】2025年勒索软件状况

A Sophos Whitepaper. April 2024The State of Ransomware 2024 Findings from an independent, vendor-agnostic survey of 5,000 leaders responsible for IT/cybersecurity across 14 countries, conducted in January-February 2024.The State of Ransomware 2024 A Sophos Whitepaper. April 2024IntroductionThe fifth Sophos annual study of the real-world ransomware experiences of organizations around the globe explores the full victim journey, from root cause through to severity of attack, financial impact, and recovery time. Fresh new insights combined with learnings from our previous studies reveal the realities facing businesses today as well as how the impact of ransomware has evolved over the last five years.This year’s report also incorporates brand new areas of study, including exploration of ransom demands vs. ransom payments, together with a heightened focus on the impact an organization’s revenue has on their ransomware outcomes. Plus, for the first time, it shines a light on the role of law enforcement in ransomware remediation.A note on reporting datesTo enable easy comparison of data across our annual surveys, we name the report for the year in which the survey was conducted: in this case, 2024. We are mindful that respondents are sharing their experiences over the previous year, so many of the attacks referenced occurred in 2023. About the surveyThe report is based on the findings of an independent, vendor-agnostic survey commissioned by Sophos of 5,000 IT/cybersecurity leaders across 14 countries in the Americas, EMEA, and Asia Pacific. All respondents represent organizations with between 100 and 5,000 employees. The survey was conducted by research specialist Vanson Bourne between January and February 2024, and participants were asked to respond based on their experiences over the previous year. Within the education sector, respondents were split into lower education (catering to students up to 18 years) and higher education (for students over 18 years). 5,000 respondents 14 countries 100-5,000 employee organizations (50% 100-1,000, 50% 1,001-5,000) 15 industry segmentsThe State of Ransomware 2024 A Sophos Whitepaper. April 2024Rate of Ransomware Attacks59% of organizations were hit by ransomware last year, a small but welcome drop from the 66% reported in both the previous two years. While any reduction is encouraging, with more than half of organizations experiencing an attack, this is no time to lower your guard.2020202120222023202451%37%66%66%59%In the last year, has your organization been hit by ransomware? Yes. n=5,000 (2024), 3,000 (2023), 5,600 (2022), 5,400 (2021), 5,000 (2020).Attacks by Revenue Encouragingly, all revenue segments reported a reduction in ransomware attack rate in the last year (although for $500M - $1B it was less than one percentage point). The propensity to be hit by ransomware generally increases with revenue, with $5B+ organizations reporting the joint highest rate of attack (67%). However, even the smalle