Less than half of ransomware incidents end in payment - but you should still be on your guard

News
By
published

2024 saw 35% decrease in ransomware payments

A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
(Image credit: Getty Images)
  • The amount of money paid to ransomware attacks declined in 2024, report claims
  • A total of $813.55 million was paid, compared to over $1.2 billion in 2023
  • Even those who pay the ransom are unlikely to get their data back in full

Anyone working in security will be all too familiar with the increasing dangers of ransomware and its disastrous consequences, but new research from ChainAnalysis has claimed 2024 actually saw a 35% decrease year-on-year in the number of firms who paid the ransom.

Ransomware attacks reportedly hit a new high in 2024, but the revenue ransomware attackers received declined for the first time since 2022. That being said, the numbers are still quite eyewatering.

Between January and June of 2024, ChainAnalysis reported a $459.8 million victim loss to ransom payments, which was actually 2.38% higher than the same period in 2023. This slowed in the period following though, and 2024’s total came to $813.55 million, compared to 2023’s staggering $1.25 billion.

New ransom guidelines

There are a few likely reasons for this. As cybersecurity teams develop their tactics and adapt to threats, alternatives to blindly paying ransoms have developed. For example, the UK government has launched proposals for ransomware protection which includes a ban on ransom payments for public services, aimed at dissuading criminals and disrupting the attackers income source.

Research has shown that those who pay the ransom aren’t even particularly likely to get their data back, with only roughly 7% actually fully recovering their information, which will undoubtedly factor into the incident response for a lot of organizations.

“According to our data, around 30% of negotiations actually lead to payments or the victims deciding to pay the ransoms. Generally, these decisions are made based on the perceived value of data that’s specifically been compromised,” commented Dan Saunders, Director of Incident Response at Kivu Consulting.

Of course, as more firms experience this, and as more security teams develop their tactics against cyberattacks, the defences against ransomware will improve. Cybersecurity and cyberattacks are both constantly evolving, so the future is unpredictable.

“For years now, the cybersecurity landscape seemed hurtling towards a so-called ransomware apocalypse" notes Jacqueline Burns Koven, Head of Cyber Threat Intelligence at Chainalysis, "so this sharp decline, to levels even lower than those in 2020 and 2021 speaks to the effectiveness of law enforcement actions, improved international collaboration, and a growing refusal by victims to cave into attackers demands."

You might also like

Ellen Jennings-Trace
Ellen Jennings-Trace
Staff Writer

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

More about security
GitHub Webpage

A cracked malicious version of a Go package lay undetected online for years
cables going into the back of a broadband router on white background

Netgear urges users to patch major router security issues now
Samsung Galaxy Z Flip 6

Samsung Galaxy Z Flip 7: latest news, rumors, and everything we’ve heard so far
See more latest