The Evolving Landscape of Ransomware: Insights from OpenText’s 2024 Global Ransomware Survey

In an era where digital transformation is accelerating, the threat of ransomware looms larger than ever. OpenText’s third annual 2024 Global Ransomware Survey sheds light on the current state of ransomware attacks, revealing alarming trends in ransom payments, the impact of software supply chain vulnerabilities, and the role of generative AI in escalating these threats. As businesses grapple with these challenges, the survey underscores the urgent need for robust cybersecurity measures and proactive defense strategies.

The Prevalence of Ransomware Attacks

The survey’s findings are striking: nearly half (48%) of respondents reported that their organizations have previously experienced a ransomware attack, with a staggering 73% indicating that they faced such an attack within the past year. Among those affected, approximately 46% opted to pay the ransom, with 31% of these payments falling between $1 million and $5 million. This trend is particularly concerning for small and medium-sized businesses (SMBs), which reported a higher incidence of ransomware attacks compared to larger enterprises. The data highlights an urgent need for organizations of all sizes to bolster their defenses against these malicious threats.

The Impact of Software Supply Chain Attacks

One of the most alarming revelations from the survey is the prevalence of ransomware attacks originating from software supply chain partners. A staggering 90% of Indian respondents reported being impacted by such attacks in the past year. This statistic underscores the vulnerability of interconnected systems and the critical importance of securing software supply chains.

The survey also found that 91% of respondents expressed concern about ransomware attacks targeting their company’s downstream software supply chain and third-party partners. In light of recent high-profile breaches affecting major industry players, nearly half (49%) of respondents are considering vendor changes to mitigate these risks. Notably, 62% of those who experienced a ransomware attack in the past year reported that the attack originated from a software supply chain partner, prompting 90% of these respondents to plan enhanced collaboration with software suppliers to improve security practices in the coming year.

The Rise of AI-Powered Attacks

As the cybersecurity landscape evolves, so too do the tactics employed by cybercriminals. The survey highlights a troubling trend: the rise of generative AI is not only empowering security teams but also enhancing the efficiency of cybercriminals. Nearly half (45%) of respondents observed an increase in phishing attacks attributed to AI, with 69% of those who experienced a ransomware attack noting a corresponding uptick in phishing attempts. This dual-edged sword presents a significant challenge for organizations striving to protect their digital assets.

Investing in Cybersecurity: A Necessity, Not an Option

In response to the growing threat of ransomware, organizations are increasingly prioritizing cybersecurity investments. According to the survey, 37% of respondents cited regulatory compliance and cyber insurance requirements as primary drivers for enhancing ransomware defense within the software supply chain. Approximately 72% of respondents reported having cyber insurance coverage, a crucial safeguard against the financial repercussions of successful attacks.

Moreover, businesses are recognizing the importance of cloud security and employee training. Nearly two-thirds (66%) of respondents indicated that their companies are prioritizing cloud security, while over half (56%) are outsourcing security to IT or managed services providers. The emphasis on security awareness training is also notable, with 91% of respondents requiring employees to participate in such programs. The increase in training frequency—66% of companies conducted training at least once per quarter in 2024—reflects a growing recognition of the human element in cybersecurity.

The Call to Action: Avoid Paying Ransoms

Despite the increasing investments in cybersecurity, the survey reveals a troubling trend: organizations continue to pay ransoms at alarming rates. Paying a ransom only serves to embolden cybercriminals and perpetuate the cycle of attacks. As Muhi Majzoub, executive vice president and chief product officer at OpenText, aptly stated, “Businesses must proactively defend against sophisticated threats like supply chain vulnerabilities and AI-driven attacks, while ensuring resilience through data backups and response plans, to avoid empowering the very criminals seeking to exploit them.”

To disrupt the growing trend of ransomware attacks, organizations must adopt a proactive stance, relying on their cyber resiliency playbooks rather than succumbing to the demands of attackers. This includes regular assessments of software suppliers, implementing advanced threat detection tools, and fostering a culture of security awareness among employees.

Conclusion

OpenText’s 2024 Global Ransomware Survey paints a sobering picture of the current ransomware landscape. As cybercriminals become more sophisticated and relentless, organizations must remain vigilant and proactive in their defense strategies. By investing in cybersecurity, enhancing collaboration with software suppliers, and prioritizing employee training, businesses can better equip themselves to navigate the evolving threat landscape and safeguard their digital assets. The fight against ransomware is ongoing, and it is imperative that organizations take decisive action to protect themselves and their stakeholders from this pervasive threat.