OpenText's 2025 Ransomware Survey Shines Light on AI Threats in Cybersecurity Landscape

OpenText's 2025 Cybersecurity Ransomware Survey: Confidence vs Threats

OpenText™, a leader in secure information management, recently unveiled key insights from its 2025 Global Ransomware Survey, which reveals a growing tension between organizational confidence in ransomware recovery and the escalating threats posed by artificial intelligence (AI). Surveying nearly 1,800 security practitioners and business leaders, the findings present a dual narrative of optimism and caution in the face of evolving cybersecurity challenges.

The Confidence Paradox

While a staggering 95% of organizations express confidence in their ability to recover from ransomware incidents, the sobering statistic emerges that only 15% of those who faced attacks reported full data recovery. This disparity underscores the false sense of security many firms may harbor as they navigate through an increasingly perilous digital landscape.

Furthermore, 88% of companies permit employees to utilize Generative AI (GenAI) tools, but a mere 48% have established formal policies governing their use. This landscape of vulnerability is further complicated by the rising complexity of AI-driven threats—concerns that include data leakage (29%), AI-enabled attacks (27%), and deepfake impersonation attempts (16%). As companies strive to balance innovation with risk management, the potential pitfalls of AI use are becoming alarmingly clear.

Supply Chain Risks: A Hidden Vulnerability

Beyond the spotlight on AI, supply chain vulnerabilities present significant threats to organizational security. The survey reveals that 40% of companies experienced a ransomware attack in the past year, and nearly half of those were victims more than once. Ransom payments remain alarmingly high, with 45% of attacked firms resorting to paying ransoms, including 30% who coughed up amounts exceeding $250K. Despite stringent measures, such as assessing supplier cybersecurity (78%) and maintaining patch management (82%), hidden risks persist within the complex webs of third-party partnerships.

This year’s survey illustrates a critical shift: ransomware has transitioned from being viewed as a mere IT issue to a core concern that warrants attention from organizational boards and executive teams. Now, a striking 71% of respondents identify ransomware as a top three business risk, indicating the heightened awareness of cybersecurity's strategic importance.

Investment Priorities and Preparedness

Looking ahead, proactive investment strategies are essential for businesses aiming to bolster their defenses. In preparation for 2026, companies have indicated that their focus will center on cloud security (58%), backup technologies (52%), and user training (52%). Notably, the majority of organizations (77%) engage in regular security awareness training to educate employees about potential threats. However, the reality is that only 4% of firms provide no such training, reflecting a serious commitment to fostering a culture of security.

Conclusion

The findings from OpenText’s 2025 Global Ransomware Survey reveal a paradox—a growing confidence among organizations juxtaposed with an evolving landscape of AI threats and supply chain vulnerabilities. As businesses navigate this complex terrain, it is crucial to adopt a holistic approach to cybersecurity that includes not only internal defenses but also collaborative efforts with partners and technology providers to mitigate potential risks.

To explore additional insights from the survey, organizations are encouraged to access the infographic detailing these findings. The fight against ransomware necessitates vigilance, preparation, and the implementation of robust security frameworks to safeguard against both internal and external threats. As highlighted by OpenText, achieving cyber resilience is increasingly reliant on the collective efforts of all stakeholders involved in the digital ecosystem.