Ransom payment rates have hit a record low, with only 23% of breached companies paying attackers in Q3 2025. The decrease is driven by enhanced security measures, law enforcement efforts, and a shift to data theft as the primary focus for ransomware groups. #Coveware #Qilin
Keypoints
- The percentage of companies paying ransoms decreased to 23% in Q3 2025, reaching an all-time low.
- Most ransomware attacks now involve data exfiltration, with over 76% of incidents in Q3 2025 including data theft.
- The average ransom payment dropped to $377,000 in Q3 2025, indicating a decline in attack profitability.
- Threat groups like Akira and Qilin focus more on medium-sized firms, which are more likely to pay ransom.
- Remote access compromises and software vulnerabilities are increasingly used as attack vectors in recent attacks.