The Cyber Security Company Sophos, based in the UK, claimed on Wednesday that 53 percent of Indian companies that were confronted with ransomware attacks in 2024 paid the hackers to get their data back.
According to the Ransomware State in the report of India 2025, the median payment to ransom was $ 481,636 (about £ 4 crore), a decrease of 79 percent compared to the previous year.
The findings are based on a study commissioned by Sophos and carried out in January March 2025. No fewer than 378 Indian IT and cyber security companies affected by a ransomware attack were part of the study.
However, the survey did not mention companies that fell prey to cyber attacks and paid the ransom for the recovery of data.
“The median ransom question fell by 52 percent, from $ 2 million to $ 961,289, while the median payment fell even more strongly by 79 percent to $ 481,636,” the report said.
Although companies pay less ransom, they spend a lot of money on repairing the damage caused by these attacks. On average, Indian companies spend around $ 1.01 million on repair costs, excluding the ransom, according to the report.
The most common technical causes of ransomware attacks were exploited vulnerabilities (29 percent), compromised references (22 percent) and malignant e -mails (21 percent).
Operational challenges such as lack of skilled staff, poor quality protection and insufficient cyber security products were mentioned by about 40 percent of respondents as contributing factors of ransomware victimization.
Published on July 2, 2025
#Sophos #claims #Indian #companies #investigated #ransom #reclaim #data #cyber #attacks