Ransomware Profits Plummet as Victims Reject Payments
Summary
According to BleepingComputer, ransomware payment rates have hit a new low, with only 23% of breached companies paying attackers in Q3 2025. This represents a continued decline from previous years, with the payment rate reaching an all-time low. Coveware reports that ransomware groups increasingly focus on data exfiltration rather than encryption, driving down payment rates.
Full Article Rewritten
The number of companies paying ransomware attackers has reached a record low, with only 23% of breached organizations yielding to threats in the third quarter of 2025. This marks a continued decline from previous years, with the payment rate reaching an all-time low, according to BleepingComputer. Coveware, a cybersecurity firm, noted that ransomware groups have shifted focus from pure encryption attacks to double extortion tactics, which involve stealing data and threatening to leak it. This shift has led to a significant drop in payment rates, with attacks that only steal data seeing a payment rate plummeting to 19%. The average and median ransom payments also fell in Q3 2025, with amounts reaching $377,000 and $140,000, respectively. Experts suggest that organizations are implementing stronger protections and recognizing the value of investing in cybersecurity over ransom payments. Additionally, threat groups like Akira and Qilin have redirected their efforts toward medium-sized firms, which are more likely to pay ransoms. Coveware emphasized that this trend indicates progress in the fight against ransomware, as avoided payments deprive attackers of resources and validate ongoing efforts by cybersecurity professionals, law enforcement, and legal specialists.
Related Currency
There are no direct currency-related implications in this article.
Has Financial Effect
This report has a financial effect, as it influences the profitability of ransomware operations, which can impact the economy through cybercrime losses and increased cybersecurity costs.
Political Stance
This report is neutral in political stance.
Tags
cybersecurity, ransomware, data theft, cybercrime, digital security
Category
Business