惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Spread Privacy
Spread Privacy
P
Palo Alto Networks Blog
P
Proofpoint News Feed
AI
AI
Help Net Security
Help Net Security
S
Securelist
T
Troy Hunt's Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
C
Cisco Blogs
Scott Helme
Scott Helme
Hacker News - Newest:
Hacker News - Newest: "LLM"
Vercel News
Vercel News
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
B
Blog
GbyAI
GbyAI
Recent Commits to openclaw:main
Recent Commits to openclaw:main
D
Darknet – Hacking Tools, Hacker News & Cyber Security
P
Proofpoint News Feed
S
Security Affairs
Cisco Talos Blog
Cisco Talos Blog
AWS News Blog
AWS News Blog
T
Tenable Blog
H
Help Net Security
NISL@THU
NISL@THU
F
Fortinet All Blogs
博客园_首页
G
GRAHAM CLULEY
L
LINUX DO - 最新话题
P
Privacy International News Feed
G
Google Developers Blog
博客园 - Franky
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Security Archives - TechRepublic
Security Archives - TechRepublic
The Register - Security
The Register - Security
L
LangChain Blog
aimingoo的专栏
aimingoo的专栏
T
Tor Project blog
P
Privacy & Cybersecurity Law Blog
量子位
C
Cyber Attacks, Cyber Crime and Cyber Security
Forbes - Security
Forbes - Security
S
Secure Thoughts
Simon Willison's Weblog
Simon Willison's Weblog
D
Docker
Recorded Future
Recorded Future
博客园 - 三生石上(FineUI控件)
L
Lohrmann on Cybersecurity
T
Tailwind CSS Blog

Press Releases

Aston Martin F1 & Zscaler: Speed Meets Security Zscaler Debuts ZAgent and Extends SASE Protection Zscaler report: AI brings lethal precision to cybercrime Zscaler Unites with Tech Leaders to Secure Enterprise AI Zscaler Unveils New Product Innovations to Secure Agentic AI Zscaler Announces Intent to Acquire Symmetry Systems, Inc. Zscaler Partners with GSIs to Launch Project AI-Guardian Zscaler and Alstom mark a decade of Zero Trust transformation to secure a cloud-first, mobile workforce and modernize operations | Zscaler Zscaler Recognized as Google Cloud Partner of the Year - Security Zscaler ZIA Achieves DoW Impact Level 5 Authorization Zscaler Expands Global Sovereignty on Zero Trust Exchange Zscaler & Singtel Singapore Bring Zero Trust Security SEA Zscaler, Together With Bharti Airtel, Announce Launch of AI & Cyber Threat Research Center to Advance Cyber Resilience and Trusted AI Adoption | Zscaler Zscaler Acquires SquareX to Advance Zero Trust Browser Security for the AI Era | Zscaler Zscaler Unveils New Innovations to Secure Enterprise AI Adoption Zscaler 2026 AI Security Report: Trends and Security Issues Zscaler Expands in Malaysia With New Data Center in Kuala Lumpur Dr. Swamy Kocherlakota to Lead Agentic AI Security Engineering Zscaler Appoints Sunil Frida as Chief Marketing Officer Zscaler recognized as AWS Marketplace Partner of the Year Zscaler and Microsoft Partner in Entra Agent ID Partner Ecosystem Zscaler Reveals 67% Jump in Android Malware & 40% of IoT Attacks Zscaler Acquires Innovative AI Security Pioneer SPLX Zscaler Announces New Innovations for Improved Digital Experience Zscaler announces advancements for U.S. Federal Civilian and DoD Zscaler Completes 2024 IRAP Assessment Zscaler and CrowdStrike Expand Partnership for Better AI Security Zscaler Completes Acquisition of Red Canary IT Resilience Undermined by Lack of Support for Team Wellbeing Zscaler Extends Zero Trust to Cellular Communications for IoT/OT Zero Trust Security Reduces Cyber Insurance Claims Zscaler Achieves ISV Competencies In Three Categories Zscaler Unveils Latest AI Innovations on stage at Zenith Live Zscaler Launches New Solutions at Zenith Live Las Vegas Kevin Rubin Joins Zscaler as Chief Financial Officer Zscaler signed a definitive agreement to acquire Red Canary Zscaler, A Leader Once Again In The 2025 Gartner MQ for SSE Zscaler Leads by Example and Achieves DoD’s CMMC Level 2 Certific Raj Judge to Join Zscaler and Board of Directors Zscaler Leads by Example and Achieves DoW’s CMMC Level 2 Certific Zscaler Listed in AWS “ICMP” for the US Federal Government Zscaler ThreatLabz Uncovers Surge in AI-Driven Cyberattacks ThreatLabz Announces Findings From Its 2025 VPN Risk Report Zscaler Deployed Across T-Mobile Operations Report Finds an Over 3,000% Surge in Enterprise Use of AI/ML Tool Zscaler Introduces Zscaler Asset Exposure Management Survey Reveals Urgent Need to Prioritize Zero Trust Adoption Zscaler Offers Integrated Zero Trust Solution for RISE with SAP Nokia Turns to Zscaler to Modernize Security Architecture Zscaler Finds Over 87% of Cyberthreats Hide in Encrypted Traffic Zscaler Extend Zero Trust to Branches, Factories and Clouds Zscaler Expands Business Continuity Solution for Cloud & Endpoint Zscaler and Okta announced four new cybersecurity integrations Zscaler Identifies Malicious Apps with Over 8M Installs Zscaler Surpasses Half a Trillion Daily Transactions TOYOTA GAZOO Selects Zscaler to Protect Users Globally Zscaler Appoints Security Industry Veteran Adam Geller as CPO Zscaler and CrowdStrike announce new cyber security integrations Zscaler Opens New Point-of-Presence in Western Australia
Ransomware Surges as Attempts Spike 146%
2025-07-29 · via Press Releases

Key Findings:

  • Ransomware attacks blocked by the Zscaler cloud rose 146%, the sharpest spike observed in the past three years.
  • Public extortion cases jumped by 70% based on data leak site analysis.
  • Data exfiltration volumes increased 92%.
  • Manufacturing, Technology, and Healthcare were the top targeted industries, and the Oil & Gas sector experienced a 935% increase in attacks.

Zscaler, Inc. (NASDAQ: ZS), the leader in cloud security, today published its annual Zscaler ThreatLabz 2025 Ransomware Report. The report examines the latest trends shaping the ransomware threat landscape, revealing how attacks are adapting and escalating. It highlights the most targeted sectors and regions, profiles the most active ransomware families, analyzes shifting attack methodologies, and provides actionable recommendations to help organizations strengthen their defenses. ThreatLabz’s findings underscore the critical importance of organizations adopting a comprehensive Zero Trust Everywhere strategy. This approach is essential to prevent ransomware and other malicious threats from lateral movement and compromising sensitive user data, applications, and information.

“Ransomware tactics continue to evolve, with the growing shift toward extortion over encryption as a clear example," said Deepen Desai, EVP Cybersecurity, Zscaler. "GenAI is also increasingly becoming part of the ransomware threat actor's playbook, enabling more targeted and efficient attacks. As threats advance, security measures must keep pace. The Zscaler Zero Trust Exchange™ platform empowers organizations to shrink their attack surface, identify and block initial compromise threats, prevent lateral movement, and stop data exfiltration to shut down extortion events before they happen."

Data Demand Fuels Steady Attack Growth

Ransomware attacks are intensifying at an alarming rate, with attempted attacks blocked in the Zscaler cloud up 146% year-over-year. This escalation reflects a strategic shift: ransomware groups are increasingly prioritizing extortion over encryption. Accordingly, the report details a 92% increase in the total volume of exfiltrated data by 10 major ransomware groups in the past year, rising from 123 TB to 238 TB. This emphasis on data theft—and the threat of exposure—allows attackers to exert greater pressure on victims, amplifying the impact of ransomware on organizations globally.

Industries Under Siege

Cybercriminals continue to focus on the high-stakes environments of the Manufacturing (1,063 attacks), Technology (922), and Healthcare (672) sectors, making them the most frequently hit by ransomware over the past year. These industries are particularly vulnerable due to the potential for operational disruption, the sensitivity of stolen data, and the associated risks of reputational damage and regulatory fallout.

The Oil & Gas sector has seen a staggering increase in ransomware attacks, spiking over 900% year-over-year. This surge is likely a result of increased automation of systems that control critical infrastructure, including drilling rigs and pipelines, expanding the sector’s attack surface, coupled with outdated security practices.

United States Is the Target of Half of All Ransomware Attacks

Leak site data highlights a distinct geographic disparity, with victims in the United States accounting for 50% of ransomware attacks, significantly outpacing Canada (5%) and the United Kingdom (4%). Ransomware attacks in the U.S. more than doubled to 3,671, exceeding the combined total number of attacks reported across all other countries in the top 15 most-targeted countries. This concentration demonstrates how threat actors continue to strategically target digitally concentrated, high-value economies.

Ransomware Groups Driving the Surge

Several highly active groups continued to dominate the ransomware ecosystem, with RansomHub leading the pack, claiming the highest number of publicly named victims at 833. Akira and Clop have both moved up in the ransomware attack rankings since last year. Akira, associated with 520 victims, has steadily expanded its reach through numerous affiliates and initial access brokers. Clop, known for its focus on supply chain attacks, is close behind with 488 victims, employing an effective strategy of exploiting vulnerabilities in commonly used third-party software.

Zscaler ThreatLabz identified 34 newly active ransomware families over the past year, bringing the total number tracked to 425 since their research began, and has a public GitHub repository that now hosts 1,018 ransomware notes, with 73 added in the last year.

How Zscaler Stops Ransomware with Zero Trust + AI

Ransomware flourishes in environments with fragmented security, limited visibility, implicit trust, and outdated legacy architectures that amplify risk rather than reduce it. The Zscaler Zero Trust Exchange mitigates these risks by replacing traditional, network-centric models with a cloud-native, AI-driven zero trust architecture, and stops ransomware at every stage of the attack life cycle by:

  • Minimizing the attack surface
  • Preventing initial compromise
  • Eliminating lateral movement
  • Blocking data exfiltration

Additional AI-powered ransomware protections from Zscaler include: 

  • Breach prediction
  • Phishing and C2 detection
  • Inline sandboxing
  • Zero Trust Browser
  • Segmentation
  • Dynamic, risk-based policy
  • Data discovery and classification
  • Data loss prevention (DLP) controls

Download the Report

Get the full ThreatLabz 2025 Ransomware Report to explore how Zscaler ThreatLabz plays an active role in protecting enterprises worldwide. Download today.

Research Methodology

The research methodology for this report is a comprehensive process that uses multiple data sources to identify and track ransomware trends. The ThreatLabz team collected data between April 2024 and April 2025 from sources including the Zscaler global security cloud, and the team’s own analysis of ransomware samples and attack data.

About ThreatLabz

ThreatLabz is the security research arm of Zscaler. This world-class team is responsible for hunting new threats and ensuring that the thousands of organizations using the global Zscaler platform are always protected. In addition to malware research and behavioral analysis, team 

members are involved in the research and development of new prototype modules for advanced threat protection on the Zscaler platform, and regularly conduct internal security audits to ensure that Zscaler products and infrastructure meet security compliance standards. ThreatLabz regularly publishes in-depth analyses of new and emerging threats on its portal, research.zscaler.com.