The healthcare, government, and technology industries together represented 53% of all publicly disclosed ransomware activity during Q3 2025.

The government sector reported 28 ransomware attacks in Q3 2025.

10% of organizations in the government sector experienced ransomware incidents annually.

The government sector had an average ransom payment just below $7.5 million

23.08% of government organizations reported limited visibility into their entire environment.

In the UAE, 30% of respondents don’t trust government services with their identity data.

Government, Non-Profit, and Telecoms sectors have the weakest protection against bots.

56% of Government bodies in the UK reported a breach in the past year alone.

92% of Government bodies in the UK reported an email-related breach.

40% of students believe the responsibility for stopping AI-powered fraud lies with government agencies.

Unapproved GenAI usage rates are highest in technology (40%), financial services (32%), and government (38%).

Government organisations are bracing for the steepest rise (73%) in insider threats.

65% of organisations in local government were affected by ransomware.

The government sector experienced a 71% year-over-year increase in overall interactive intrusions and a 185% year-over-year increase in targeted intrusion activity.

The government sector was the second most targeted for ransomware, with 45 publicly disclosed attacks between April - June 2025.

In one analysis, government had 26% of vulnerable assets across cloud, APIs, and web applications.

Top 5 industries by cloud‑asset vulnerability: Professional Services: 25.0%, Retail: 23.3%, Government: 18.4%, Education: 17.6%, Media: 13.8%.

In one analysis, the government sector had 18.4% vulnerable cloud assets.

In one analysis, the government sector had 18.5% vulnerable APIs.

In one analysis, the government sector had 30.4% vulnerable web applications.