FEAR & GREED | Business News Q+A: The $711,000 cost many businesses are still willing to pay
Nov 17, 2025
Darren Hopkins, Head of Cyber at McGrathNicol and ransomware expert, and Brendan Payne, Cyber partner focusing on incident analysis, dive into the shifting landscape of ransomware. They reveal that average ransom payments have declined significantly from $1.35M to $711K as businesses grow more cautious about paying. The duo discusses evolving tactics like double extortion and the impact of mandatory reporting regulations. Their insights suggest that increased awareness and accountability could lead to better defensive strategies for organizations.
AI Snips
Chapters
Transcript
Episode notes
Ransomware Still Prevalent But Payments Fall
- Ransomware remains common: 44% of surveyed businesses experienced an incident in 12 months, down from higher prior years.
- Average ransom payments dropped sharply to $711,000, indicating shifting attack economics and responses.
SMEs Bear The Brunt
- Small and medium businesses bear the brunt of attacks while major breaches dominate headlines.
- High-profile incidents are a small proportion compared with widespread SME targeting.
Attackers Shift To Double Extortion
- Attack tactics are evolving toward double extortion and supply-chain impacts.
- Criminals increasingly steal data to pressure victims and target partners to amplify disruption.