Ransomware Attacks Decline in France in 2025, ANSSI Reports

First reported

11.03.2026 18:50

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

France's National Cybersecurity Agency (ANSSI) reported a decline in ransomware attacks in 2025, attributing the drop to successful preventive interventions and law enforcement operations. Despite the decrease, ransomware remains a significant threat, particularly targeting SMBs, healthcare, and education sectors. The most prevalent ransomware strains observed were Qilin, Akira, and LockBit 3.0/LockBit Black. ANSSI also noted a rise in data exfiltration incidents and a drop in DDoS attacks. The agency highlighted the increasing overlap between nation-state groups and cybercriminals, complicating attribution efforts. Vincent Strubel, ANSSI’s director general, warned of potential hybrid attacks on critical infrastructure by 2030.

Timeline

11.03.2026 18:50 1 articles · 3h ago

Ransomware Attacks Decline in France in 2025
ANSSI reported a decline in ransomware attacks in France in 2025, with Qilin, Akira, and LockBit 3.0/LockBit Black being the most prevalent strains. The decline is attributed to successful preventive interventions and law enforcement operations, including Operation Endgame. Despite the drop, ransomware remains a significant threat, particularly targeting SMBs, healthcare, and education sectors.
Show sources

France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50
Open in new tab

Information Snippets

Ransomware attacks in France declined in 2025, with Qilin, Akira, and LockBit 3.0/LockBit Black being the most prevalent strains.
First reported: 11.03.2026 18:50

1 source, 1 article
Show sources
- France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50
SMBs, healthcare, and education sectors were the most targeted by ransomware.
First reported: 11.03.2026 18:50

1 source, 1 article
Show sources
- France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50
ANSSI reported 3586 cyber alerts in 2025, an 18% drop compared to 2024.
First reported: 11.03.2026 18:50

1 source, 1 article
Show sources
- France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50
Out of 460 possible data leaks identified, 42% were confirmed as actual compromises.
First reported: 11.03.2026 18:50

1 source, 1 article
Show sources
- France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50
There was a significant drop in DDoS attacks targeting French organizations in 2025.
First reported: 11.03.2026 18:50

1 source, 1 article
Show sources
- France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50
ANSSI noted the increasing overlap between nation-state groups and cybercriminals, complicating attribution.
First reported: 11.03.2026 18:50

1 source, 1 article
Show sources
- France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 — www.infosecurity-magazine.com — 11.03.2026 18:50