NewKerala.com

Key Points

A new cybersecurity report by Sophos reveals significant shifts in ransomware attack patterns across Indian organizations. The study shows a substantial decline in ransom payments, with companies paying an average of $481,636 compared to previous years. Exploited vulnerabilities and compromised credentials emerged as the primary methods of cyber attacks. The report highlights the ongoing challenges businesses face in protecting their digital infrastructure from sophisticated ransomware threats.

Key Points: Sophos Reveals Indian Firms' $481K Ransomware Payment Trends

  • Median ransom demand dropped 52% from $2 million to $961,289
  • 41% of organizations paid less than original ransomware demand
  • Exploited vulnerabilities caused 29% of cyber attacks
  • 31% of Indian firms experienced data theft during encrypted attacks
2 min read

Indian companies paid USD 481,636 on average for cyber attack demands: Report

Cybersecurity report shows declining ransom demands and payments for Indian companies, with key insights into attack patterns and recovery costs.

"53% of Indian companies paid ransom to recover data - Sophos Ransomware Report 2025"

New Delhi, July 2

Indian companies paid a median payment of USD 481,636 (over Rs 4 crore), spending an average of USD 1.01 million on recovery, highlighting the broader financial toll of ransomware cyber attacks, says a report by UK-based global security solution firm Sophos.

It stated that the median ransom demand fell by 52 per cent, from USD 2 million to USD 961,289, while the median payment dropped even more sharply by 79 per cent.

The report said that about 41 per cent of Indian organisations paid less than the original demand, nearly half paid the full amount, and 12 per cent paid even more, underscoring the unpredictable outcomes many face during ransomware incidents.

The report, whose findings are based on a survey, claimed that nearly 53 per cent of Indian companies paid the ransom to get their data back, which is a considerable drop from the 65 per cent reported last year.

The sixth annual State of Ransomware 2025 report surveyed around 3,400 IT and cybersecurity leaders across 17 countries, including 378 organisations in India that were hit by ransomware in the last year.

The report added that exploited vulnerabilities were the most common technical root cause of attack, used in 29 per cent of attacks. These are followed by compromised credentials, which were the start of 22 per cent of attacks. Malicious emails were used in 21 per cent of attacks, the report said.

The report said that from an operational perspective, 41 per cent of organisations cited a lack of people or capacity and/or poor-quality protection as common root causes, while 39 per cent acknowledged that not having the necessary cybersecurity products or services played a factor in their organisation falling victim to ransomware.

According to the survey, which was conducted between January and March this year, 31 per cent of Indian organisations reported data theft in attacks involving encrypted data, representing a modest decrease from 34 per cent the previous year.

The report claimed USD 1 million or more was demanded in ransom for 49 per cent of Indian organisations, down from 62 per cent the previous year.

- ANI

Share this article:

Reader Comments

P
Priya S
The report shows some positive trends though - ransom demands and payments are decreasing. Maybe our cyber awareness campaigns are working? Still, 53% paying ransom is too high 😕
A
Aman W
Most attacks happen due to vulnerabilities and compromised credentials. Basic cyber hygiene could prevent majority of these! Change passwords regularly people 🙏
S
Sarah B
Working in IT security, I see companies still treating cybersecurity as afterthought. The recovery costs (1M USD!) prove prevention is cheaper than cure. Need board-level attention!
K
Karthik V
Respectfully disagree with some comments - the report shows improvement! Less companies paying ransom, lower demands. We're moving in right direction. Govt's Cyber Surakshit Bharat initiative helping maybe?
N
Nisha Z
Small businesses suffer most - they can't afford fancy security but are equally vulnerable. Need affordable solutions for MSMEs. #DigitalIndia should include cyber protection for all!
D
David E
Interesting that 12% paid MORE than demanded! Shows panic decision-making during attacks. Companies need pre-planned response protocols, not emotional reactions when under pressure.

We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.

Leave a Comment

Minimum 50 characters 0/50