Delinea, a pioneering provider of solutions for securing human and machine identities through centralized authorization, has unveiled new research highlighting how ransomware attacks have continued to surge over the past year, despite fewer victims paying. Over two-thirds (69%) of organizations globally have fallen victim to ransomware, with 27% being hit more than once. Meanwhile, attackers are harnessing AI to automate, scale, and sharpen their operations.
Also Read:ย Power Stored, Power Secured: Why Cybersecurity Is Central to Battery Storage
Based on insights from over 1,000 IT and security leaders worldwide, theย 2025 State of Ransomware Reportย reveals an increasingly volatile threat landscape driven by AI-powered attacks, stolen credentials, and Ransomware-as-a-Service (Raas). While only 57% of organizations paid ransoms, down from 76% in 2024, the frequency and impact of attacks continued to grow as threat actors turned to other tactics like extortion, with 85% of ransomware victims threatened with exposure.
โRansomware has evolved into a shape-shifting, AI-enabled threat that no business can afford to underestimate,โ said Art Gilliland, CEO at Delinea. โIn order to combat the sophistication of todayโs attacks, organizations must fight AI with AI and embrace proactive, identity security strategies like zero trust architecture, Privileged Access Management, and continuous credential monitoring to stay ahead.โ
AI: The Double-Edged Sword
The report highlights the growing role of AI on both sides of the ransomware equation. Threat actors are using AI to automate phishing, impersonate trusted individuals via deepfakes, and accelerate attacks. At the same time, defenders are increasingly relying on AI to detect and respond to threats faster, with 90% of organizations now using AI in their ransomware defense strategies โ primarily within Security Operations Centers (64%), for analyzing Indicators of Compromise (62%), and to prevent phishing (51%).
Also Read:ย Cutting Through Observability Clutter: How CIOs Can Escape the Cost Spiral
Despite 90% of executives expressing concern over ransomware threats, many organizations continue to fall short in essential security practices, with only 34% enforcing least privilege access controls and just 57% implementing application control measures. Most victims reported extended recovery times, with 75% taking up to two weeks to recover.
[To share your insights with us, please write toย psen@itechseries.com]
