38% of organizations hit with ransomware in 2022 were repeat victims

Organizations that were hit multiple times were likelier to say they’d paid the ransom and less likely to use a data backup system for recovery.


  • Barracuda international survey finds 73% of organizations experienced a successful ransomware attack in 2022 — 38% were hit more than once.
  • 42% of those hit three times or more paid the ransom to restore encrypted data — compared to 31% of victims hit just once.
  • 69% of ransomware attacks began with an email.
  • 27% of organizations feel underprepared to tackle ransomware.

Barracuda Networks, Inc., a trusted partner and leading provider of cloud-first security solutions, recently published its 2023 Ransomware Insights report, which shows that 73% of the organizations surveyed report being hit with at least one successful ransomware attack in 2022 — and 38% say they were hit twice or more. The organizations that were hit multiple times were more likely to say they’d paid the ransom — 42% of those hit three times or more paid the ransom to restore encrypted data, compared to 31% of victims of a single attack. They were also less likely to use a data backup system to help them recover.

The survey, conducted by independent research firm Vanson Bourne and commissioned by Barracuda, questioned IT professionals from frontline to the most senior roles at companies with 100 to 2,500 employees, across a range of industries in the U.S. and EMEA and APAC countries.

There were significant variations in the industries targeted by ransomware. For example, 98% of consumer services and 85% of energy, oil/gas, and utility organizations experienced at least one ransomware attack. The energy, oil/gas, and utility industry was also the most likely, at 53%, to report two or more successful ransomware incidents.

The findings show that for 69% of organizations, the ransomware attack started with a malicious email, such as a phishing email designed to steal credentials that would allow the attackers to breach the network. Web applications and traffic are in second place and represent an area of growing risk as part of an ever-expanding threat surface.

Organizations with cyber insurance were more likely to be affected by ransomware — 77% of organizations with cyber insurance were hit with at least one successful ransomware attack, compared to 65% without cyber insurance.

The research also found that 27% of the organizations surveyed feel they are not fully prepared to deal with a ransomware attack.

“The number of organizations affected by ransomware in 2022 likely reflects the widespread availability of low cost, accessible attack tools through ransomware-as-a-service offerings,” said Fleming Shi, CTO, Barracuda. “The relatively high proportion of repeat victims suggests that security gaps are not fully addressed after the first incident. The security industry has an essential role to play in helping organizations to defend themselves against ransomware, through deep, multilayered security technologies that include advanced email protection and backup as well as threat hunting and extended detection and response (XDR) capabilities to stop malicious activity in its tracks.”


Get a copy of the report: https://www.barracuda.com/reports/ransomware-insights-report-2023

Check out the blog post: http://cuda.co/blg2023ri

For essential security steps, get the guide: Don’t pay the ransom – a three step guide to ransomware protection, which includes a downloadable ransomware protection checklist to get you started.

For more on cyber liability insurance, get the guide: Cyber insurance requirements guide


Barracuda commissioned independent market researcher Vanson Bourne to conduct a global survey of IT managers, senior IT security managers, and senior IT and IT security decision-makers. There were 1,350 survey participants from a broad range of industries, including agriculture, biotechnology, construction, energy, government, healthcare, manufacturing, retail, telecommunications, wholesale, and others. Survey participants were from the U.S., Australia, India, and Europe. In Europe, respondents were from the United Kingdom, France, DACH (Germany, Austria, Switzerland), Benelux (Belgium, the Netherlands, Luxembourg), and the Nordics (Denmark, Finland, Norway, Sweden). The survey was fielded in December 2022.

About Barracuda 

At Barracuda we strive to make the world a safer place. We believe every business deserves access to cloud-first, enterprise-grade security solutions that are easy to buy, deploy, and use. We protect email, networks, data, and applications with innovative solutions that grow and adapt with our customers’ journey. More than 200,000 organizations worldwide trust Barracuda to protect them — in ways they may not even know they are at risk — so they can focus on taking their business to the next level. For more information, visit barracuda.com.