CYBERSTATS

Security Intelligence

VendorsBlackFog

BlackFog

Cybersecurity reports and statistics published by BlackFog

8 categories4 reports

Research Reports

Reports and publications from BlackFog

BlackFog’s 2025 Q3 Ransomware Report

The State of Ransomware 2025

2024 State of Ransomware Annual Report

2025 State of Ransomware Report

Recent Statistics & Reports

The number of unreported ransomware attacks in Q3 2025 showed a 21% increase compared with the same period in 2024.

Ransomware attacks in the healthcare sector accounted for 32% of all incidents in Q3 2025.

RansomwareHealthcare

In Q3 2025, 54 ransomware groups were linked to attacks.

The services sector experienced 333 ransomware incidents in Q3 2025.

RansomwareServices sector

The construction sector suffered 143 ransomware attacks between July and September 2025.

RansomwareConstruction

1131 undisclosed ransomware attacks were recorded in Q3 2023.

Across 449 dark web victim listings where details were available, the average data volume exfiltrated was 527.65GB in Q3 2025.

RansomwareDark webData exfiltration

Only 3% of undisclosed ransomware cases included an upfront ransom demand in Q3 2025.

RansomwareRansom

The legal sector recorded 79 attacks, its highest level yet, in Q3 2025.

RansomwareLegal

Ransomware groups targeted organizations in 93 countries worldwide in Q3 2025..

RansomwareGlobal

80 groups published victims on dark web leak sites in Q3 2025.

RansomwareDark webLeak site

Other groups were collectively responsible for 1018 undisclosed ransomware attacks in Q3 2025, representing 67% of all undisclosed ransomware attacks.

The INC ransomware group exfiltrated 5.7 TB of data from the Pennsylvania Office of Attorney General.

RansomwareINCData exfiltration

The Pennsylvania Office of Attorney General's systems were taken down across 17 offices statewide.

RansomwareCyber attack consequences

Approximately 1,200 staff of the Pennsylvania Office of Attorney General had to use forced workarounds due to the cyberattack.

RansomwareCyber attack consequences

The penalty for Qantas CEO Vanessa Hudson due to the bonus reduction following the July 2025 breach amounted to about A$250,000.

RansomwareQantasCyber attack consequences

Qilin was responsible for 242 undisclosed ransomware attacks in Q3 2025, representing 16% of all undisclosed ransomware attacks.

RansomwareQilin

Qilin was responsible for 16% of ransomware cases in Q3 2025..

RansomwareQilin

Manufacturing accounted for 22% of all undisclosed ransomware attacks in Q3 2025.

RansomwareManufacturing

1252 undisclosed ransomware attacks were recorded in Q3 2024.

Showing 41-60 of 105 results

Top Categories

Cyber attack consequences

9

Data exfiltration

7

6

Ransomware Groups

5

5

Disclosed Ransomware Attacks

4

Related Vendors

Nozomi Networks

GuidePoint Security