CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Ransomware Victims in Europe Increase by 13% in 2024-2025

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

European organizations experienced a 13% increase in ransomware incidents over the past year, with the UK being the most affected country. The manufacturing, professional services, technology, industrials and engineering, and retail sectors were the most targeted. Over 2100 victims across Europe were named on extortion leak sites since January 2024, with 92% of these incidents involving file encryption and data theft. The most active ransomware groups were Akira, LockBit, RansomHub, INC, Lynx, and Sinobi. The region is the second-most targeted globally after North America, with around a fifth (22%) of victims. The rise in ransomware incidents is partly attributed to 'big-game hunting' attacks, where threat actors target larger companies, often leveraging GDPR mandates to force payments. Initial access brokers advertised access to over 1400 hacked European organizations.

Timeline

  1. 03.11.2025 11:45 1 articles · 7d ago

    Ransomware Victims in Europe Spike 13% in 2024-2025

    European organizations experienced a 13% increase in ransomware incidents over the past year, with the UK being the most affected country. The manufacturing, professional services, technology, industrials and engineering, and retail sectors were the most targeted. Over 2100 victims across Europe were named on extortion leak sites since January 2024, with 92% of these incidents involving file encryption and data theft. The most active ransomware groups were Akira, LockBit, RansomHub, INC, Lynx, and Sinobi. The region is the second-most targeted globally after North America, with around a fifth (22%) of victims. The rise in ransomware incidents is partly attributed to 'big-game hunting' attacks, where threat actors target larger companies, often leveraging GDPR mandates to force payments.

    Show sources
    Open in new tab

Information Snippets

  • European organizations saw a 13% increase in ransomware incidents over the past year.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • The UK was the most affected country, followed by Germany, Italy, France, and Spain.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • The most targeted sectors were manufacturing, professional services, technology, industrials and engineering, and retail.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • Over 2100 victims across Europe were named on extortion leak sites since January 2024.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • 92% of the incidents involved file encryption and data theft.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • Europe is the second-most targeted region globally after North America, with around 22% of victims.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • Akira, LockBit, RansomHub, INC, Lynx, and Sinobi were the most active ransomware groups.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources

  • Initial access brokers advertised access to over 1400 hacked European organizations.

    First reported: 03.11.2025 11:45
    1 source, 1 article
    Show sources