92% of ransomware cases in Europe involved file encryption and data theft in 2025

Data theft was observed in 18% of incidents.

Manufacturing organisations experienced 24% of attacks involving data theft.

Credentials or data were stolen in nearly half of all cyberattacks.

Ransomware and data theft attempts accounted for nearly 30 percent of all Sophos Managed Detection and Response (MDR) tracked incidents (in which malicious activity of any sort was detected) for small and midsized businesses.

One in three CEOs cite cyber espionage and loss of sensitive information/intellectual property (IP) theft as their top concern.