9 in 10 Organizations Paid At least One Ransom Last Year

Ransomware Attacks TargetingNew analysis of cyber attacks shows ransomware attacks are running far more rampant than previously thought, with half of organizations blaming poor cyber hygiene.

After last year’s shocking stat that 70% of organizations pay the ransom, it’s really surprising to see that an even greater percentage (91%) have paid a ransom at least once in the last 12 months – this according to Extrahop’s 2024 Global Cyber Confidence Index.

Only 5% of organizations did not experience a ransomware attack, while one-third of organizations experienced eleven or more in a 12-month period! And when it did happen, a surprising 75% of organizations paid the ransom half of the time!

It is concerning to observe the prevalence of ransomware attacks across various organizations, especially considering that inadequate cyber hygiene practices contribute significantly to these security risks.

For roughly 50% of organizations, weak cyber hygiene is responsible for half of all cybersecurity incidents. These findings highlight that regardless of an organization's size, there is a substantial connection between cyber incidents and the need for improved cyber hygiene practices, as illustrated below:

Poor Cyber Hygiene

Resource: Extrahop

What’s surprising is that this is relatively easy to address. The use of continual new-school security awareness training will help to significantly reduce the risk users introduce to the organization through poor cyber habits and their interaction with malicious content in email and on the web.

With so many organizations paying ransoms, it’s time to look at the cost of stopping a ransomware attack in the first place versus paying one – if not half – of all the ransoms demanded of your organization. Solutions like security awareness training will reduce the risk – and the cost – of ransomware attacks.

KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.

Free Ransomware Simulator Tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

KnowBe4’s "RanSim" gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 24 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

RansIm-Monitor3Here's how it works:

  • 100% harmless simulation of real ransomware and cryptomining infections
  • Does not use any of your own files
  • Tests 25 types of infection scenarios
  • Just download the install and run it 
  • Results in a few minutes!

Get RanSim!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:


Subscribe to Our Blog

Comprehensive Anti-Phishing Guide

Get the latest about social engineering

Subscribe to CyberheistNews