RansomwareClock.org
Reported Cost of Ransomware Attacks 2025 YTD
$
Aggregated Estimate from Public and Private Sources, Reflects Reported Attacks Only. Actual cost estimated to be significantly higher.
Cyber Stats
$1.85m
93%
11 seconds
207 days
days is the average time to identify a breach. Meaning the bad guys are in your system for over 6-months. IBM Security Cost of a Data Breach Report 2020.
Only 21%
21 days
Spotlight
RECENT ATTACKS & NEWS
September 1, 2025
The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
Read More
August 29, 2025
In Other News: Iranian Ships Hacked, Verified Android Developers, AI Used in Attacks
Read More
August 29, 2025
VerifTools Fake ID Operation Dismantled by Law Enforcement
Read More
August 29, 2025
Google Confirms Workspace Accounts Also Hit in Salesforce–Salesloft Drift Data Theft Campaign
Read More
August 29, 2025
TransUnion Data Breach Impacts 4.4 Million
Read More
August 29, 2025
Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions
Read More
August 29, 2025
US Sanctions Russian National, Chinese Firm Aiding North Korean IT Workers
Read More
August 29, 2025
Ransomware Group Exploits Hybrid Cloud Gaps, Gains Full Azure Control in Enterprise Attacks
Read More
August 28, 2025
Affiliates Flock to ‘Soulless’ Scam Gambling Machine
Read More
August 28, 2025
China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years
Read More
PREVENTATIVE RESOURCES
Governmental and Law Enforcement
Legal Matters
Insurance Resources
In Case of Cyber Attack Emergency
If a ransomware incident occurs at your organization, CISA, FBI, and NSA recommend the following actions:
- Follow the Ransomware Response Checklist on p. 11 of the CISA-Multi-State Information Sharing and Analysis Center (MS-ISAC) Joint Ransomware Guide
- Scan your backups. If possible, scan your backup data with an antivirus program to check that it is free of malware.
- Report incidents immediately to CISA at https://us-cert.cisa.gov/report, a local FBI Field Office, or U.S. Secret Service Field Office
- Apply incident response best practices found in the joint advisory from Australia, Canada, New Zealand, the United Kingdom, and the United States on Technical Approaches to Uncovering and Remediating Malicious Activity.
Contact your Local FBI Office - https://www.fbi.gov/contact-us/field-offices
Report a Complaint to the FBI’s Internet Criminal Complaint Center: www.IC3.gov
Technical Expertise/Crisis Communications