Ransomware Insights Report 2025: One in Three Ransomware Victims in APAC Hit Multiple Times as Security Gaps Persist

Barracuda Networks, Inc., a leading cybersecurity company providing complete protection against complex threats for all sized businesses, has released new research, the Ransomware Insights Report 2025, showing 34% of ransomware victims were affected multiple times in the last 12 months as gangs exploit ineffective defences and security fragmentation. The findings also show that 69% of repeat victims say they are juggling too many security tools, and 62% say their tools do not integrate—disrupting visibility and creating blind spots where attackers can hide.

The Ransomware Insights Report 2025 is based on the findings of an international survey undertaken by Barracuda with Vanson Bourne, gathering insights from 2,000 IT and security decision-makers across North America, Europe and Asia-Pacific (Australia, India, Japan). The results highlight how ransomware remains a persistent and lucrative threat, ruthlessly exploiting security complexity and coverage gaps to implement multidimensional attacks for maximum disruption and financial gain.

What the Ransomware Insights Report 2025 Uncovered

The Ransomware Insights Report 2025 shows that:

• 61% of the organisations surveyed by the Ransomware Insights Report 2025 were affected by ransomware, including 66% of those in healthcare and 65% for local government.
• Ransomware attackers have a one-in-three chance of payout. 34% of APAC ransomware victims paid the attackers to recover or restore data. Across all the countries surveyed, 32% of ransomware victims paid a ransom, risingto 37% among organizations affected twice or more.
• 34% of those who paid a ransom failed to recover all their data. There can be several reasons for this. The decryption tools provided by the attackers may not work, or they have only shared a partial key. Files can be damaged during the encryption and decryption processes, and sometimes the attackers take the ransom and do not provide any decryption tools. A good and regularly updated backup offers proven protection against this risk.
• Ransomware attacks are multidimensional. Just under a quarter (24%) of the ransomware incidents experienced by respondents involved data encryption, while a significant number involved the attackers stealing (25%) and publishing data (also 25%), infecting devices with other malicious payloads (26%), installing backdoors for persistence (23%), and more.
• The impact crater of a successful ransomware attack is expanding, from reputational harm (experienced by 42%) to tangible business impact such as loss of new business opportunities (24%) and payment pressure tactics that include threatening partners, shareholders, and customers (21%), and employees (15%).

“The findings from the Ransomware Insights Report 202 highlight the growing ransomware challenge across Asia-Pacific, where organisations face pressures from fragmented security environments and complex IT infrastructures. We see businesses here struggling to manage multiple, disconnected tools while also dealing with resource constraints and a fast-changing threat landscape. This leaves critical blind spots for attackers to exploit. To reduce risk, organisations in the region need to prioritise visibility, integration, and proactive defense measures—including strong backup strategies—to withstand repeated ransomware attempts and minimise business disruption,” said Mark Lukie, Director of Solution Architects, APAC, at Barracuda, about the findings of the company’s Ransomware Insights Report 2025.