Ransomware Statistics for 2018

Eric C.
BY: Eric C.
Posted: October 23, 2018

Ransomware attacks can range in severity from difficult to deal with to crippling. Unprepared users and businesses can quickly lose valuable data, but the easiest way to combat ransomware is to understand how it works, who it targets, and other important information about this evolving strain of malware and viruses.

Ransomware attacks can be expensive. In the next year, experts predict these attacks will cost businesses nearly $11 billion, a substantial increase from the $325 million reported in 2015.

Ransomware Is a Top 5 Threat

Ransomware Statistics

Ransomware continues to grow in popularity, prompting Verizon to name it a top-five threat. With new strains of ransomware constantly appearing, users need to understand how to recognize it and prevent it from infecting their systems. For example, nearly 60% of ransomware attacks are delivered through email as embedded URLs.

Consumer Ransomware Infection Rates Are Declining

Ransomware Statistics

Consumer infection rates are on the decline, though, as the biggest ransomware targets are still small and medium-sized businesses. Ransomware works by encrypting important data and “selling” it back to its owner, so the average consumer’s files just aren’t valuable enough to bother with when compared to a larger business with more expendable cash flow.

Ransomware and Malware Are Highly Correlated

Ransomware Statistics

In 1,379 incidents involving malware, ransomware accounted for 56% of them. Malware remains a common method to deploy ransomware to a target’s computer.

Ransomware 2nd Biggest Cybersecurity Threat in Retail

Ransomware Statistics

For retail businesses, ransomware is the second largest cybersecurity threat. Retail businesses often house large databases of their customers’ information, and thanks to data breach laws and the EU’s GDPR regulations, it’s information that they cannot afford to lose.

Ransomware Continues to Grow Annually

Ransomware Statistics

While consumer ransomware is declining, overall ransomware infection rates are growing steadily, especially those targeting larger businesses.

The Healthcare Industry is the Most Targeted

Ransomware Statistics

According to Barracuda, 47% of businesses have been affected by ransomware. Of these businesses, the healthcare industry is the most commonly attacked at 46%, while the financial and professional services industries follow at 12% each.

The healthcare industry is a logical choice because of the sensitive information that companies store. Loss of data in the healthcare industry is expensive and can result in large fines from government agencies. The disruption to patient care from a “locked” network can also lead to malpractice lawsuits.

New Ransomware Variants Currently Growing Annually by 46%

Ransomware Statistics

Ransomware is constantly evolving and new, more sophisticated strains are on the rise. Over the last year, the number of new variants increased by 46%.

Daily Ransomware Detection Rates Are Flat Year-Over-Year

Ransomware Statistics

Modern antivirus software is struggling to cope with the growth of ransomware. Daily detection rates remain flat year-over-year, showing that they are having trouble detecting new strains as they evolve.

U.S. Companies Second-Most Affected by Petya Ransomware Strain

Ransomware Statistics

U.S. companies are the second most-affected victims of the well-known Petya ransomware strain while businesses in Ukraine took the top spot.

 Ransomware Major Player in Crypto Industry

Ransomware Statistics

The cryptocurrency industry is still plagued by ransomware, likely due to the swift rise in crypto prices that occurred earlier in the year. As Bitcoin mining increases in difficulty, these types of attacks may continue to follow the trend.

 Ransomware is Rarely Paid by Organizations in the U.S.

Ransomware Statistics

Ninety-seven percent of U.S. organizations refused to pay the ransom in ransomware attacks. However, 75% of Canadian companies did pay, as did 22% of German businesses, and 58% of companies in the United Kingdom.

Average Ransom Ranges Between $500 and $2,000 for SMBs

Ransomware Statistics

The average ransom payment for small and medium-sized businesses typically ranges from $500 to $2,000. While this amount may seem insignificant for larger businesses, it can be crippling for smaller businesses that cannot afford to lose their data. There are also many cases where hackers still delete a company’s files after the ransom has been paid, meaning both the money and the files are gone.

Majority of Businesses Signal Data Loss and Downtime as Biggest Ransomware Outcomes

Ransomware Statistics

Most companies say they experience data loss and major downtime as the result of a ransomware attack. Both of these outcomes are extremely costly for a business, especially larger ones with hundreds of employees. Significant downtime can result in millions of dollars of lost revenue and decreased consumer trust.

Windows Still the Most Targeted System

Ransomware Statistics

Ninety-nine percent of multiple service providers say Windows operating systems are targeted most frequently by ransomware attacks. However, this doesn’t mean that OS X, Linux, and Android are immune. Any operating system can fall victim to a ransomware attack.

SaaS Applications Are Being Affected by Ransomware

Ransomware Statistics

Popular software as a service (SaaS) applications are being targeted by ransomware, too. A study involving several multiple service providers found that Dropbox, Office 365, G Suite, Azure, and Amazon Web Services have experienced ransomware attacks in some form.

Summary of Ransomware Statistics

Ransomware isn’t going away any time soon. Quite simply, it works, so individual users and businesses will continue to be targeted. URLs embedded in emails remains the number one way for computers to become infected.

Data loss is a serious concern that affects both individuals and companies. The best defense against ransomware is for users to learn what it is, how it infects a computer, and what to do once it happens. Of course, the most effective tool against any type of malicious software is an up-to-date antivirus. Check out our antivirus software reviews to determine which one is most effective against ransomware while meeting your needs.


  1. https://resources.malwarebytes.com/files/2018/07/Malwarebytes_Cybercrime-Tactics-and-Techniques-Q2-2018.pdf
  2. https://www.verizonenterprise.com/resources/reports/rp_DBIR_2018_Report_en_xg.pdf
  3. https://www.verizonenterprise.com/resources/reports/rp_DBIR_2018_Report_en_xg.pdf
  4. https://www.verizonenterprise.com/resources/reports/rp_DBIR_2018_Report_en_xg.pdf
  5. https://www.beazley.com/documents/Whitepapers/201802-beazley-breach-briefing.pdf
  6. https://www.beazley.com/documents/Whitepapers/201802-beazley-breach-briefing.pdf
  7. https://www.symantec.com/content/dam/symantec/docs/reports/istr-23-2018-en.pdf
  8. https://www.symantec.com/content/dam/symantec/docs/reports/istr-23-2018-en.pdf
  9. https://www.symantec.com/blogs/threat-intelligence/petya-ransomware-wiper
  10. VPN Mentor
  11. Osterman Research
  12. Datto
  13. Datto
  14. Datto
  15. Datto

About the Author

Eric C.
Eric C.

Eric is a professional copywriter with over 7 years of experience writing on marketing and tech topics. In recent years, he has focused heavily on the rapidly developing security, fintech, and cryptocurrency industries.