The latest Q1 statistics compiled by NordStellar indicate ransomware continues to dominate the cyber threat landscape. In January-March, 2,440 new ransomware cases were made public on the dark web. This is an increase of 84% compared to the same period in 2024 (1,325).
“The soaring number of ransomware attacks is more than just a trend — it's an ever-growing threat for businesses worldwide,” says Vakaris Noreika, a cybersecurity expert at NordStellar. “Ransomware groups are getting more sophisticated, exploiting zero-day vulnerabilities faster, and leveraging ransomware-as-a-service (RaaS) to expand their reach. Many organizations still struggle with unpatched systems and weak credential security, thus, becoming easy targets. No business, regardless of size, is immune.”
NordStellar
Key takeaways:
- The United States remains the top target for ransomware attacks, with at least 990 companies falling victim, making it the most affected country globally, with 41% of the total number of cases. Canada is second with 105 cases, followed by the United Kingdom (74), Germany (56), France (42), and India (42).
- Manufacturing was the top industry hit by ransomware in Q1, with 273 cases, followed by information technology (172) and professional services (116).
- NordStellar data shows that small and medium-sized businesses (SMBs) are the prime target for hackers specializing in ransomware. Companies with a revenue of $10-50 million and employing 51-200 people were hit by ransomware the most in Q1.
![Pros To Know 2025 [color]](https://img.sdcexec.com/files/base/acbm/scn/image/2025/01/Pros_To_Know_2025__color_.67856cb23da64.png?auto=format%2Ccompress&fit=crop&h=191&q=70&w=340)
