VendorsSophos
Sophos
Cybersecurity reports and statistics published by Sophos
8 categories4 reports
Research Reports
Reports and publications from Sophos
Recent Statistics & Reports
The average cost of recovering from a ransomware attack in retail, excluding any ransom payment, dropped by 40% to $1.65 million in 2025, the lowest point in three years
11/9/2025•
RansomwareRansom Retail
62% of retailers who experienced attacks restored their data using backups in 2025, the lowest rate in four years
11/9/2025•
RansomwareEncrypted dataBackup
The median ransom demand for retail ransomware attacks doubled to $2 million in 2025 compared to 2024
11/9/2025•
RansomwareRansom Retail
47% of retail IT/cybersecurity teams reported increased pressure after experiencing data encryption in 2025
11/9/2025•
RansomwareData encryptionRetail
The proportion of retailers hit by extortion-only attacks tripled from 2% in 2023 to 6% in 2025
11/9/2025•
RansomwareExtortion-only attackRetail
58% of retail organizations with encrypted data paid the ransom in 2025, marking the second highest payment rate in five years
11/9/2025•
RansomwareEncrypted dataRansom
26% of cases in retail saw leadership teams replaced as a result of data encryption in 2025
11/9/2025•
RansomwareLeadershipRetail
46% of retail ransomware incidents were traced to an unknown security gap in 2025
11/9/2025•
RansomwareSecurity gapRetail
Only 54% of companies used backups to restore their data after a ransomware attack, which is the lowest percentage in six years.
6/24/2025•
RansomwareBackups
Overall, 63% of organisations cited resourcing issues as a contributing factor to falling victim to a ransomwre attack.
6/24/2025•
Ransomware
Over half (53%) of organisations fully recovered from a ransomware attack in a week, up from 35% last year.
6/24/2025•
RansomwareRecovery
Only 18% took more than a month to recover from a ransomware attack, down from 34% in 2024
6/24/2025•
RansomwareRecovery
Nearly 50% of companies paid a ransom to recover their data, which is the second highest rate of ransom payment for demands in six years.
6/24/2025•
RansomwareRansom
The median ransom payment was $1 million.
6/24/2025•
RansomwareRansom
Companies with over $1 billion in revenue faced a median ransom demand of $5 million.
6/24/2025•
RansomwareRansom
Lack of people/capacity was most frequently cited factor for falling for a ransomware attack by those with 251-500 employees.
6/24/2025•
RansomwareTalentStaff
The average cost of recovery from a ransomware attack dropped from $2.73 million in 2024 to $1.53 million in 2025.
6/24/2025•
RansomwareCost
The median ransom demand decreased by a third between 2024 and 2025.
6/24/2025•
RansomwareRansom
40% of ransomware victims stated that adversaries exploited a security gap they were unaware of, highlighting issues with attack surface visibility.
6/24/2025•
RansomwareVulnerabilities
53% of companies that paid the ransom successfully negotiated a lower amount than the initial demand.
6/24/2025•
RansomwareRansom
Showing first 20 results