Nearly half of companies say they pay up ransomware demands – but here’s why that could be a bad idea – TechRadar

  • Updated
  • 3 mins read


Published on: 2025-06-25

Intelligence Report: Nearly Half of Companies Pay Ransomware Demands – Risks and Recommendations

1. BLUF (Bottom Line Up Front)

Recent findings indicate that nearly half of organizations targeted by ransomware attacks choose to pay the ransom, despite a decrease in median ransom demands. This approach may not be sustainable or advisable due to potential regulatory fines, data loss, and operational disruptions. Immediate action is required to enhance cybersecurity measures and reduce reliance on ransom payments.

2. Detailed Analysis

The following structured analytic techniques have been applied to ensure methodological consistency:

Adversarial Threat Simulation

Cyber adversaries exploit vulnerabilities such as compromised credentials and malicious emails. Simulating these threats can help organizations identify weaknesses and improve their defenses.

Indicators Development

Monitoring for anomalies in system behavior can facilitate early detection of ransomware activities, enabling quicker response and mitigation.

Bayesian Scenario Modeling

Probabilistic models predict potential attack pathways, allowing organizations to prioritize defenses against the most likely threats.

3. Implications and Strategic Risks

The trend of paying ransoms poses significant risks, including increased financial strain, potential legal repercussions, and encouragement of further attacks. The systemic vulnerability of organizations highlights the need for comprehensive cybersecurity strategies to prevent cascading effects across sectors.

4. Recommendations and Outlook

  • Enhance cybersecurity infrastructure by adopting managed detection and response (MDR) services and implementing multifactor authentication.
  • Invest in employee training to recognize and respond to phishing attempts and other cyber threats.
  • Develop a robust incident response plan to minimize downtime and data loss in the event of an attack.
  • Scenario Projections:
    • Best Case: Organizations significantly reduce ransomware incidents through proactive measures and collaboration with cybersecurity experts.
    • Worst Case: Continued ransom payments lead to increased frequency and severity of attacks, resulting in substantial economic and reputational damage.
    • Most Likely: A gradual improvement in cybersecurity posture, with some organizations still opting to pay ransoms due to inadequate preparation.

5. Key Individuals and Entities

Chester Wisniewski, Ellen

6. Thematic Tags

national security threats, cybersecurity, ransomware, organizational resilience

Nearly half of companies say they pay up ransomware demands - but here's why that could be a bad idea - TechRadar - Image 1

Nearly half of companies say they pay up ransomware demands - but here's why that could be a bad idea - TechRadar - Image 2

Nearly half of companies say they pay up ransomware demands - but here's why that could be a bad idea - TechRadar - Image 3

Nearly half of companies say they pay up ransomware demands - but here's why that could be a bad idea - TechRadar - Image 4