CxO Trail
  • Home
  • Cybersecurity
    • All
    • Acquisition
    • CISO & Cyber Leadership Africa
    • CxO Security Insights
    • Cyber Governance & Risk
    • Cyber Visionaries
    • Cybersecurity Reports
    • Data-Driven Cyber Watch
    • Featured Stories
    • Global vs African threat landscape insights
    • Leading Women in Cyber
    • Top Threats & Trends
    Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

    Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    ESET and EVC Group Partner to Launch CyberSec BESS for European Energy Resilience

    ESET and EVC Group Partner to Launch CyberSec BESS for European Energy Resilience

    Ransomware and Infostealers Hijack Windows Automation to Bypass Security

    Ransomware and Infostealers Hijack Windows Automation to Bypass Security

    One Identity Appoints New Channel Leadership for EMEA and North America

    One Identity Appoints New Channel Leadership for EMEA and North America

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    ESET Joins Global Effort Against Amadey and Stealc

    ESET Joins Global Effort Against Amadey and Stealc

    Liquid C2 Achieves Google Gold VPP Status: Boosting Africa’s Cloud Connectivity

    Liquid C2 Achieves Google Gold VPP Status: Boosting Africa’s Cloud Connectivity

    How One Coding Framework Powers a Global Scam Economy

    How One Coding Framework Powers a Global Scam Economy

    • Cyber Visionaries
    • CISO & Cyber Leadership
    • Cyber Governance & Risk
    • Women in Cyber
    • Data Privacy & Ethics
    • Emerging Cyber Voices
  • Artificial Intelligence
    • All
    • AI & Automation
    • AI for Africa
    • AI Governance & Ethics
    • AI in Cybersecurity
    • AI Insights & Reports
    • AI Leadership
    • Global Industry Updates
    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

    Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

    Perion Expands Distribution Program, Partnering with Acrossmedia241 to Bring Outmax AI Agent to Greece and CEE

    Perion Expands Distribution Program, Partnering with Acrossmedia241 to Bring Outmax AI Agent to Greece and CEE

    Backbase Acquires Kasisto to Bring Agentic AI to African Banking

    Backbase Acquires Kasisto to Bring Agentic AI to African Banking

    AI at Mission Speed: Deploying Sovereign Infrastructure in Under Two Hours

    AI at Mission Speed: Deploying Sovereign Infrastructure in Under Two Hours

    Cloud Box Technologies Launches AI Labs to Shape the Future of UAE Innovation

    Cloud Box Technologies Launches AI Labs to Shape the Future of UAE Innovation

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    King Hussein Cancer Center Partners with ReMedi Health Solutions to Pioneer AI-Driven Cancer Care

    King Hussein Cancer Center Partners with ReMedi Health Solutions to Pioneer AI-Driven Cancer Care

    AFC Appoints Fola Fagbule to Lead New Nairobi Regional Hub

    AFC Appoints Fola Fagbule to Lead New Nairobi Regional Hub

  • CxO Visionaries
  • Webinars
    Revolutionising Security Across Africa through Autonomous Penetration Testing

    Revolutionising Security Across Africa through Autonomous Penetration Testing

    Empowering Enterprise Networking in Africa with HPE Aruba SD-WAN & SASE Solutions

    Empowering Enterprise Networking in Africa with HPE Aruba SD-WAN & SASE Solutions

    Upcoming Webinar: The Future of Identity Security in Africa

    Upcoming Webinar: The Future of Identity Security in Africa

    Autonomous Pen Testing Webinar: How Horizon3.ai & Sechpoint are Empowering African Enterprises

    Autonomous Pen Testing Webinar: How Horizon3.ai & Sechpoint are Empowering African Enterprises

    Sechpoint, in Collaboration with HPE Aruba, to Host SD-WAN and SASE Solutions Webinar on June 18, Powered by SHAHPER Media

    Sechpoint, in Collaboration with HPE Aruba, to Host SD-WAN and SASE Solutions Webinar on June 18, Powered by SHAHPER Media

    Nigeria’s Data Leaders Unite for Automation-First NDPA Compliance Webinar Hosted by Platview and Powered by Securiti.ai

    Nigeria’s Data Leaders Unite for Automation-First NDPA Compliance Webinar Hosted by Platview and Powered by Securiti.ai

No Result
View All Result
  • Home
  • Cybersecurity
    • All
    • Acquisition
    • CISO & Cyber Leadership Africa
    • CxO Security Insights
    • Cyber Governance & Risk
    • Cyber Visionaries
    • Cybersecurity Reports
    • Data-Driven Cyber Watch
    • Featured Stories
    • Global vs African threat landscape insights
    • Leading Women in Cyber
    • Top Threats & Trends
    Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

    Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    ESET and EVC Group Partner to Launch CyberSec BESS for European Energy Resilience

    ESET and EVC Group Partner to Launch CyberSec BESS for European Energy Resilience

    Ransomware and Infostealers Hijack Windows Automation to Bypass Security

    Ransomware and Infostealers Hijack Windows Automation to Bypass Security

    One Identity Appoints New Channel Leadership for EMEA and North America

    One Identity Appoints New Channel Leadership for EMEA and North America

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    ESET Joins Global Effort Against Amadey and Stealc

    ESET Joins Global Effort Against Amadey and Stealc

    Liquid C2 Achieves Google Gold VPP Status: Boosting Africa’s Cloud Connectivity

    Liquid C2 Achieves Google Gold VPP Status: Boosting Africa’s Cloud Connectivity

    How One Coding Framework Powers a Global Scam Economy

    How One Coding Framework Powers a Global Scam Economy

    • Cyber Visionaries
    • CISO & Cyber Leadership
    • Cyber Governance & Risk
    • Women in Cyber
    • Data Privacy & Ethics
    • Emerging Cyber Voices
  • Artificial Intelligence
    • All
    • AI & Automation
    • AI for Africa
    • AI Governance & Ethics
    • AI in Cybersecurity
    • AI Insights & Reports
    • AI Leadership
    • Global Industry Updates
    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

    Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

    Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

    Perion Expands Distribution Program, Partnering with Acrossmedia241 to Bring Outmax AI Agent to Greece and CEE

    Perion Expands Distribution Program, Partnering with Acrossmedia241 to Bring Outmax AI Agent to Greece and CEE

    Backbase Acquires Kasisto to Bring Agentic AI to African Banking

    Backbase Acquires Kasisto to Bring Agentic AI to African Banking

    AI at Mission Speed: Deploying Sovereign Infrastructure in Under Two Hours

    AI at Mission Speed: Deploying Sovereign Infrastructure in Under Two Hours

    Cloud Box Technologies Launches AI Labs to Shape the Future of UAE Innovation

    Cloud Box Technologies Launches AI Labs to Shape the Future of UAE Innovation

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    The New Standard in DDoS Defense: Why Link11’s Redesign Changes the Game

    King Hussein Cancer Center Partners with ReMedi Health Solutions to Pioneer AI-Driven Cancer Care

    King Hussein Cancer Center Partners with ReMedi Health Solutions to Pioneer AI-Driven Cancer Care

    AFC Appoints Fola Fagbule to Lead New Nairobi Regional Hub

    AFC Appoints Fola Fagbule to Lead New Nairobi Regional Hub

  • CxO Visionaries
  • Webinars
    Revolutionising Security Across Africa through Autonomous Penetration Testing

    Revolutionising Security Across Africa through Autonomous Penetration Testing

    Empowering Enterprise Networking in Africa with HPE Aruba SD-WAN & SASE Solutions

    Empowering Enterprise Networking in Africa with HPE Aruba SD-WAN & SASE Solutions

    Upcoming Webinar: The Future of Identity Security in Africa

    Upcoming Webinar: The Future of Identity Security in Africa

    Autonomous Pen Testing Webinar: How Horizon3.ai & Sechpoint are Empowering African Enterprises

    Autonomous Pen Testing Webinar: How Horizon3.ai & Sechpoint are Empowering African Enterprises

    Sechpoint, in Collaboration with HPE Aruba, to Host SD-WAN and SASE Solutions Webinar on June 18, Powered by SHAHPER Media

    Sechpoint, in Collaboration with HPE Aruba, to Host SD-WAN and SASE Solutions Webinar on June 18, Powered by SHAHPER Media

    Nigeria’s Data Leaders Unite for Automation-First NDPA Compliance Webinar Hosted by Platview and Powered by Securiti.ai

    Nigeria’s Data Leaders Unite for Automation-First NDPA Compliance Webinar Hosted by Platview and Powered by Securiti.ai

No Result
View All Result
CxO Trail
No Result
View All Result

Sophos Report Reveals Falling Encryption Rates Mask a Surge in Extortion-Only Tactics

Anabel Emekene by Anabel Emekene
December 10, 2025
in Cyber Security, Cybersecurity Reports
Reading Time: 3 mins read
0
Sophos Report Reveals Falling Encryption Rates Mask a Surge in Extortion-Only Tactics

Sophos Report Reveals Falling Encryption Rates Mask a Surge in Extortion-Only Tactics

New data from the Sophos State of Ransomware in Manufacturing and Production 2025 report delivers a stark, two-part message for the industry: defenses are improving, but attackers are adapting faster. While manufacturing organizations are successfully stopping more ransomware attacks early on, adversaries are pivoting aggressively to data theft and extortion to maintain leverage.

Based on an independent survey of 332 manufacturing organizations, the findings highlight both the progress the industry has made and the crucial, evolving threats it still faces.

The 2025 Sophos report underscores a significant shift in the cyber battlefield targeting manufacturers:

  1. Falling Encryption, Rising Extortion
    Positive Trend: Only 40% of attacks on manufacturers resulted in data encryption, the lowest level in five years (down sharply from 74% last year). This shows a marked improvement in early detection and defense. Adversary Pivot: However, this progress is offset by the dramatic rise of extortion-only attacks, which surged from 3% to 10% of incidents. Attackers are increasingly relying on stolen data, not just locked data, for leverage.
  2. The Double-Edged Sword of Data Theft
    Manufacturing now has one of the highest rates of data theft across all surveyed sectors, with 39% of organizations that experienced encryption also reporting stolen data. The most prominent groups targeting the sector, such as GOLD SAHARA (Akira) and GOLD FEATHER (Qilin), routinely employ double extortion, stealing data and encrypting it to maximize pressure. Sophos X-Ops observed 99 distinct threat groups targeting the industry in the last year alone.
  3. The Cost of the Attack
    Despite improved defenses, over half (51%) of affected organizations still paid the ransom. The median ransom paid was $1 million, against a median demand of $1.2 million. Excluding the ransom, the average recovery cost remains high at $1.3 million, though this figure did decline by 24% year-over-year.
  4. Expertise and Visibility Remain Critical Gaps
    Internal factors fueling the attacks point directly to systemic weaknesses: Lack of Expertise: Cited by 42.5% of organizations. Security Gaps: Cited by 41.6% (unknown security gaps) and 41% (lack of protection).

Alexandra Rose, Director of Threat Research at the Sophos Counter Threat Unit, highlights the operational risks: “Manufacturing depends on interconnected systems where even brief downtime can stop production and ripple across supply chains. Attackers exploit this pressure… Layered defenses, continuous visibility, and well-rehearsed response plans are essential.”

To strengthen defenses for the long term, Sophos recommends manufacturers focus on these best practices:

  • Eliminate Root Causes: Proactively address common weaknesses, such as exploited vulnerabilities, using tools like Sophos Managed Risk.
  • Defend Every Endpoint: Use dedicated anti-ransomware defenses on all endpoints, especially servers.
  • Plan and Prepare: Establish and routinely test a comprehensive incident response plan, including reliable data restoration practices.
  • Monitor Around the Clock: Partner with a Managed Detection and Response (MDR) provider for 24/7 continuous visibility and expert threat response.

While the manufacturing sector’s ability to block encryption is a major victory, the evolving threat landscape means a shift in focus is necessary: defense must now equally prioritize preventing data theft to undermine the modern extortion-only business model.

Tags: Ransomware in ManufacturingSophos Report 2025
Previous Post

Driving the Future of Automotive Intelligence in the Middle East

Next Post

Fynd Accelerates African Retail: Unifying Commerce in South Africa with Surtee Group

Anabel Emekene

Anabel Emekene

Next Post
Fynd Accelerates African Retail: Unifying Commerce in South Africa with Surtee Group

Fynd Accelerates African Retail: Unifying Commerce in South Africa with Surtee Group

  • Trending
  • Latest
George Njuguna Leads Kenya’s AI-Driven Cybersecurity and Digital Trust Movement

George Njuguna Leads Kenya’s AI-Driven Cybersecurity and Digital Trust Movement

July 31, 2025
Certified CISO Philip Aiwekhoe on Shaping the Future of Cybersecurity Strategy in Africa’s Financial Sector

Certified CISO Philip Aiwekhoe on Shaping the Future of Cybersecurity Strategy in Africa’s Financial Sector

August 5, 2025
Patchifi Officially Emerges from Stealth with Intelligent Automation at Its Core

Patchifi Officially Emerges from Stealth with Intelligent Automation at Its Core

October 31, 2025
Olayinka Wilson-Kofi

Olayinka Wilson-Kofi: Championing Cybersecurity, Governance, and Inclusion Across Africa and the Middle East

August 7, 2025
Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

July 13, 2026
Angola’s Telecom UNITEL Launches Landmark IPO for 15% Stake on BODIVA

Angola’s Telecom UNITEL Launches Landmark IPO for 15% Stake on BODIVA

July 10, 2026
Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

July 10, 2026
Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

July 10, 2026

Recent News

Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

Resecurity Champions Digital Trust as Gold Sponsor of ISACA MENA Conference 2026 in Jordan

July 13, 2026
Angola’s Telecom UNITEL Launches Landmark IPO for 15% Stake on BODIVA

Angola’s Telecom UNITEL Launches Landmark IPO for 15% Stake on BODIVA

July 10, 2026
Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

Sygnia Investigation Reveals AI-Accelerated Attack Enabled Lone Threat Actor to Compromise Cloud in 72 Hours

July 10, 2026
Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

Banuba Launches Easy Virtual Try-On: Zero Code, No Developers, and Live in 5 Minutes

July 10, 2026
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Email us: editorial@cxotrail.com

© 2025 CxOTrail. A publication by SHAHPER Media Ltd.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

🧠 Stay Ahead in Cybersecurity & AI

Get Africa’s top C-level insights delivered monthly. Free, sharp, and on point.

No Result
View All Result
  • About Us
  • Advertise with Us
  • AI + Cybersecurity
  • AI Governance & Policy
  • Artificial Intelligence
  • CISO & Cyber Leadership
  • Contact Us
  • Cyber Governance & Risk
  • Cyber Visionaries
  • Cyber Visionaries | Africa
  • Data Privacy & Ethics
  • Emerging AI Talent & Startups
  • Emerging Cyber Voices
  • Gitex Nigeria
  • Home
  • Magazine
  • Magazines
  • Privacy Policy
  • Women in AI
  • Women in Cyber

© 2025 CxOTrail. A publication by SHAHPER Media Ltd.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.