BlackFog

105 STATS4 REPORTS

Reports

BlackFog’s 2025 Q3 Ransomware Report 58 stats2025 State of Ransomware Report17 stats2024 State of Ransomware Annual Report16 statsThe State of Ransomware 202514 stats

All Statistics

A $4 million ransom was demanded in a July 2025 DEVMAN attack on PT.EI. COM.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareDEVMAN

1510 undisclosed ransomware attacks occurred in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

DEVMAN demanded $91 million from Shimao Group, the largest ransom in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareRansomDEVMANShimao Group

DEVMAN has claimed 19 ransomware attacks across Asia, Africa, Europe, and Latin America.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareDEVMANAsiaAfricaEurope

The Qilin group was responsible for 20 ransomware incidents in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareQilin

The healthcare sector experienced 86 ransomware attacks.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareHealthcare

The Qantas board imposed a 15% reduction in short-term bonuses for the CEO and senior executives due to the July 2025 breach.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareQantasCyber attack consequences

The penalty for Qantas CEO Vanessa Hudson due to the bonus reduction following the July 2025 breach amounted to about A$250,000.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareQantasCyber attack consequences

Qilin was responsible for 242 undisclosed ransomware attacks in Q3 2025, representing 16% of all undisclosed ransomware attacks.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareQilin

Qilin was responsible for 16% of ransomware cases in Q3 2025..

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareQilin

Manufacturing accounted for 22% of all undisclosed ransomware attacks in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareManufacturing

1252 undisclosed ransomware attacks were recorded in Q3 2024.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Undisclosed ransomware attacks in Q3 2024 increased by 11% year-over-year compared to Q3 2023.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The government sector reported 28 ransomware attacks in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareGovernment

Nearly 85% of all ransomware incidents were not disclosed publicly.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The technology sector reported 28 ransomware attacks in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareTechnology

Q3 2025 saw the emergence of 18 new ransomware groups.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

For every 100 ransomware attacks, only 15 were publicly reported.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

270 publicly disclosed ransomware attacks were reported in Q3 2025 - 36% increase compared to the same quarter in 2024.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Reported ransomware attacks in July 2025 led with a sharp 50% year-on-year surge.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Reported ransomware attacks in August 2025 increased by 37%.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Reported ransomware attacks in September 2025 rose by 27%.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The healthcare, government, and technology industries together represented 53% of all publicly disclosed ransomware activity during Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareHealthcareGovernmentTechnology

There were 62 Disclosed Ransomware Attacks in Q3 2020.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Approximately 40% of reported ransomware attacks in Q3 2025 have not yet been attributed to any known ransomware group.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

96% of all disclosed ransomware cases involved data exfiltration in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareData exfiltration

There were 74 Disclosed Ransomware Attacks in Q3 2021.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The number of Disclosed Ransomware Attacks increased by 19% in Q3 2021 compared to Q3 2020.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

There were 93 Disclosed Ransomware Attacks in Q3 2022.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The number of Disclosed Ransomware Attacks increased by 26% in Q3 2022 compared to Q3 2021.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

There were 167 Disclosed Ransomware Attacks in Q3 2023.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The number of Disclosed Ransomware Attacks increased by 80% in Q3 2023 compared to Q3 2022.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

There were 198 Disclosed Ransomware Attacks in Q3 2024.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The number of Disclosed Ransomware Attacks increased by 19% in Q3 2024 compared to Q3 2023.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Companies in 35 countries reported ransomware attacks in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Q3 attacks have surged by 335% since 2020.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Akira was responsible for 139 undisclosed ransomware attacks in Q3 2025, representing 9% of all undisclosed ransomware attacks.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareAkira

Ransomware group Radiant claimed to have exfiltrated data on over 8,000 children across Kido International's UK sites.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareRadiantData exfiltrationCyber attack consequences

Ransomware group Radiant published profiles of ten children following a ransomware attack on Kido International.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareRadiantData exfiltrationCyber attack consequences

INC was responsible for 111 undisclosed ransomware attacks in Q3 2025, representing 7% of all undisclosed ransomware attacks.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareINC

Ransomware group Radiant threatened to release full profiles of 30 children following a ransomware attack on Kido International.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareRadiantData exfiltrationCyber attack consequences

Ransomware group Radiant threatened to release data for 100 employees following a ransomware attack on Kido International.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareRadiantData exfiltrationCyber attack consequences

The number of unreported ransomware attacks in Q3 2025 showed a 21% increase compared with the same period in 2024.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Ransomware attacks in the healthcare sector accounted for 32% of all incidents in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareHealthcare

In Q3 2025, 54 ransomware groups were linked to attacks.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

The services sector experienced 333 ransomware incidents in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareServices sector

The construction sector suffered 143 ransomware attacks between July and September 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareConstruction

1131 undisclosed ransomware attacks were recorded in Q3 2023.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
Ransomware

Across 449 dark web victim listings where details were available, the average data volume exfiltrated was 527.65GB in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareDark webData exfiltration

Only 3% of undisclosed ransomware cases included an upfront ransom demand in Q3 2025.

BlackFogBlackFog’s 2025 Q3 Ransomware Report ·7mo ago
RansomwareRansom