An increasing number of companies are paying ransoms to cybercriminals following ransomware attacks, as hackers deploy more advanced tactics powered by artificial intelligence. A recent study conducted by cybersecurity firm S-RM and advisory group FGS Global revealed that 24.3% of companies affected by cyberattacks opted to pay ransom demands in 2025, a significant rise from 14.4% in 2024 and 16.4% in 2023. Despite this upward trend, the rate remains below the peak of 27.6% recorded in 2022, according to the report.
Cybersecurity experts indicate that hackers are becoming increasingly adept at using artificial intelligence to identify sensitive information and create targeted threats. Jamie Smith, head of cybersecurity at S-RM, noted that attackers now utilize AI “to find the most sensitive information that could cause maximum damage.” He emphasized that threats have become more specific and personalized, designed to heighten the victim’s fear and increase their willingness to pay.
This evolution in cyberattacks has made ransomware incidents particularly effective, particularly when criminals threaten to release confidential data or disrupt essential systems. The study highlighted that industrial and manufacturing companies are more likely to acquiesce to ransom demands, largely due to the operational disruptions ransomware attacks can cause, which lead to significant financial losses. Businesses in these sectors often feel pressure to restore systems swiftly, making ransom payments seem like the quickest route to resuming operations. Cybersecurity analysts argue that attackers deliberately target organizations where operational disruptions can lead to immediate financial repercussions.
Notable companies have fallen victim to cyberattacks in 2025, including Jaguar Land Rover, which was forced to halt factory operations worldwide for nearly a month following an IT breach. Retail giants Marks & Spencer and Co-op were also targeted in cyber incidents last year, although none of these companies have publicly confirmed making ransom payments. Experts suggest that many organizations refrain from disclosing ransom payments out of concern that it could encourage further attacks.
Ransom demands vary widely, as highlighted in the report, which noted that these demands range from $10,000 to over $1 million, with the average payment hovering around $296,000. While some organizations choose not to pay and rely on backups or recovery systems, others opt to pay in order to swiftly regain access to critical data and operations. Jenny Davey, co-head of crisis management at FGS Global, described artificial intelligence as a “double-edged sword” for businesses, noting that while it enhances efficiency, it also creates new vulnerabilities that cybercriminals can exploit.
Experts warn that ransomware attacks are becoming a significant threat to companies globally, as criminals increasingly combine data theft, system disruption, and psychological pressure to coerce victims into compliance. As cyber threats continue to evolve, businesses are urged to bolster their security measures, maintain secure backups, and adopt stronger authentication protocols to mitigate the risk of expensive ransomware attacks. The growing complexity of cybercrime underscores the urgent need for organizations to remain vigilant and proactive in their cybersecurity strategies.
See also
Anthropic’s Claims of AI-Driven Cyberattacks Raise Industry Skepticism
Anthropic Reports AI-Driven Cyberattack Linked to Chinese Espionage
Quantum Computing Threatens Current Cryptography, Experts Seek Solutions
Anthropic’s Claude AI exploited in significant cyber-espionage operation
AI Poisoning Attacks Surge 40%: Businesses Face Growing Cybersecurity Risks
