Report by Resilience

Resilience 2025 Midyear Cyber Risk Report

8 FINDINGSPublished Sep 9, 2025
View Original Report →

Key Findings

Vendor-driven cyber insurance claims notifications fell from 37% to 26% of all claims, representing a 30% drop.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceVendor

Healthcare, retail, and manufacturing remained the most targeted sectors.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceHealthcareRetailManufacturing

Despite a drop in notifications, vendor-related claims still accounted for 15% of incurred losses estimated so far in 2025.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceVendor

Manufacturing faced several ransomware incidents, generating cyber insurance claims averaging over $1 million in severity.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceRansomwareManufacturing

Financially motivated social engineering, particularly tailored attacks enhanced by AI-powered phishing content, fuelled a disproportionate share of incurred losses (88%).

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insurance

The average cost of an individual ransomware attack rose by 17% in the first half of 2025.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceRansomware

Healthcare experienced extortion demands as high as $4 million.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceExtortionHealthcare

Healthcare, retail, and manufacturing remained the most targeted sectors.

ResilienceResilience 2025 Midyear Cyber Risk Report ·Sep 9, 2025
Cyber insuranceHealthcareRetailManufacturing