VendorsSophos
Sophos
Cybersecurity reports and statistics published by Sophos
8 categories4 reports
Research Reports
Reports and publications from Sophos
Recent Statistics & Reports
The proportion of retailers hit by extortion-only attacks tripled from 2% in 2023 to 6% in 2025
11/9/2025•
RansomwareExtortion-only attackRetail
The average cost of recovering from a ransomware attack in retail, excluding any ransom payment, dropped by 40% to $1.65 million in 2025, the lowest point in three years
11/9/2025•
RansomwareRansom Retail
The median ransom demand for retail ransomware attacks doubled to $2 million in 2025 compared to 2024
11/9/2025•
RansomwareRansom Retail
47% of retail IT/cybersecurity teams reported increased pressure after experiencing data encryption in 2025
11/9/2025•
RansomwareData encryptionRetail
26% of cases in retail saw leadership teams replaced as a result of data encryption in 2025
11/9/2025•
RansomwareLeadershipRetail
46% of retail ransomware incidents were traced to an unknown security gap in 2025
11/9/2025•
RansomwareSecurity gapRetail
62% of retailers who experienced attacks restored their data using backups in 2025, the lowest rate in four years
11/9/2025•
RansomwareEncrypted dataBackup
58% of retail organizations with encrypted data paid the ransom in 2025, marking the second highest payment rate in five years
11/9/2025•
RansomwareEncrypted dataRansom
Only 54% of companies used backups to restore their data after a ransomware attack, which is the lowest percentage in six years.
6/24/2025•
RansomwareBackups
Only 18% took more than a month to recover from a ransomware attack, down from 34% in 2024
6/24/2025•
RansomwareRecovery
Over half (53%) of organisations fully recovered from a ransomware attack in a week, up from 35% last year.
6/24/2025•
RansomwareRecovery
Overall, 63% of organisations cited resourcing issues as a contributing factor to falling victim to a ransomwre attack.
6/24/2025•
Ransomware
The median ransom payment was $1 million.
6/24/2025•
RansomwareRansom
Companies with over $1 billion in revenue faced a median ransom demand of $5 million.
6/24/2025•
RansomwareRansom
Lack of people/capacity was most frequently cited factor for falling for a ransomware attack by those with 251-500 employees.
6/24/2025•
RansomwareTalentStaff
The average cost of recovery from a ransomware attack dropped from $2.73 million in 2024 to $1.53 million in 2025.
6/24/2025•
RansomwareCost
The median ransom demand decreased by a third between 2024 and 2025.
6/24/2025•
RansomwareRansom
40% of ransomware victims stated that adversaries exploited a security gap they were unaware of, highlighting issues with attack surface visibility.
6/24/2025•
RansomwareVulnerabilities
53% of companies that paid the ransom successfully negotiated a lower amount than the initial demand.
6/24/2025•
RansomwareRansom
The median ransom payment dropped by 50% from $2 million in 2024 to $1 million in 2025.
6/24/2025•
RansomwareRansom
Showing 1-20 of 43 results