PLUS: Crooks target hardware crypto wallets; Bad flaws in Brother printers; ,O365 allows takeover-free phishing; and more

Infosec in Brief Despite warnings not to pay ransomware operators, almost half of those infected by the malware send cash to the crooks who planted it, according to infosec software slinger Sophos.

The vendor surveyed 3,400 IT pros in early 2025 about their experiences over the last year and found 49 percent paid ransoms on their stolen data. That’s the second highest payment rate in six years, second only to the 56 percent payment rate from last year.

Sophos also found that crooks have reduced the sums they demand by a third since 2024, and the median ransom payment fell by 50 percent.

So while many victims are paying ransoms, their outlays are falling.

53 percent of respondents said they paid less than the initial ransom demand, which Sophos’s researchers feel is an indicator that “companies are becoming more successful at minimizing the impact of ransomware."

However ...