New Semperis Study Highlights Ransomware Threats During Holidays and Weekends

Overview

In a recent study conducted by Semperis, a prominent player in AI-driven identity security and cyber resilience, alarming trends in ransomware attacks have come to light. The report, titled 2025 Holiday Ransomware Risk Report, indicates that the majority of these malicious cyber incidents tend to occur during the holiday and weekend periods—times when cybersecurity resources are often at their lowest.

Key Findings

The global study surveyed various organizations across the U.S., UK, France, Germany, Italy, Spain, Singapore, Canada, Australia, and New Zealand. The findings showed that 52% of participating businesses experienced ransomware attacks during holidays or weekends. The report raises significant concerns about the drop in cybersecurity staff during these critical times, as 78% of companies reported reducing their security operation center (SOC) staffing by at least 50%, while 6% even ceased operations entirely.

Moreover, the study highlights a sharp increase in ransomware activities during major corporate events such as mergers, acquisitions, and layoffs, exploitation scenarios that attackers are keen to leverage. An overwhelming 60% of organizations reported that these attacks were more likely to occur after such significant business activities, indicating a pattern in the cybercriminal strategy.

Insights on Cybersecurity Staffing

The reasons for the staffing reductions are manifold. According to the report, 62% of organizations seek to provide their employees with a balanced work/life dynamic, while 47% cited the closure of business operations as an underlying factor. Interestingly, 29% of these organizations did not perceive themselves as potential targets for ransomware, showing a concerning lack of awareness regarding the cyber threat landscape.

Chris Inglis, the inaugural U.S. National Cyber Director and currently a strategic advisor at Semperis, weighed in on the findings. "Threat actors continue to take advantage of reduced cybersecurity staffing on holidays and weekends to launch ransomware attacks. Vigilance during these times is more critical than ever because the persistence and patience attackers have can lead to long-lasting business disruptions," he explained.

Cybersecurity Strategies Going Forward

In light of the findings, the emphasis on Identity Threat Detection and Response (ITDR) planning is underscored. While 90% of organizations revealed that their ITDR plans focus on identifying vulnerabilities within identity systems, only 45% of these plans included remediation steps. Additionally, only 63% were capable of automating the recovery of identity systems—all highlighting the need for more robust recovery strategies within organizational cybersecurity frameworks.

Conclusion

As cyber threats become increasingly prevalent during vulnerable periods, organizations should urgently reassess and fortify their cybersecurity measures during holidays and weekends. Considering the ongoing trends, CEOs and cybersecurity professionals must prioritize maintaining adequate staffing levels and reinforcing protocols around critical corporate events. The importance of vigilance cannot be overstated, as complacency may open the door for attackers amidst reduced defenses. Semperis remains dedicated to aiding global organizations in enhancing their cyber resilience capabilities.

For further insights and strategies, you can access the full study at Semperis.com and explore their Identity Resilience Platform via this link.

About Semperis

Founded on the mission to enhance identity protection in complex hybrid and multi-cloud environments, Semperis effectively safeguards over 100 million identities against cyber threats and operational errors. The company, headquartered in Hoboken, New Jersey, is committed to delivering cutting-edge security solutions to clients worldwide, engaging in continuous education through resources such as the Hybrid Identity Protection Conference and various security tools like Purple Knight and Forest Druid.