22 Jan Top 10 Ransomware Attacks Over The Past Year
This week in cybersecurity from the editors at Cybercrime Magazine
Sausalito, Calif. – Jan. 22, 2026
–Read the full story in SOC Radar
In 2025, ransomware moved beyond isolated IT incidents and became a systemic risk, capable of disrupting national supply chains, critical services, and entire industries. This shift is reflected in long-term projections, with Cybersecurity Ventures estimating that the global cost of ransomware will reach $275 billion annually by 2031, driven by downtime, data loss, recovery efforts, and lost productivity, not just ransom payments.
In a recent blog post SOCRadar rattled off the top 10 ransomware attacks of 2025:
1. Salesforce Ecosystem – The SaaS Supply Chain Blind Spot
2. Oracle E-Business Suite: Zero-Day Supply Chain Extortion
3. Jaguar Land Rover Ransomware Attack: Britain’s Costliest Cyberattack Ever
4. Ingram Micro Ransomware Attack: Global IT distribution paralyzed
5. Co-operative Group: UK retail sector siege continues
6. PowerSchool: Education Sector Extortion at Unprecedented Scale
7. Synnovis – Healthcare Disruption with Confirmed Patient Harm
8. DaVita: Ransomware Hits Critical Healthcare Infrastructure
9. Asahi Group: Manufacturing Halt Exposes IT–OT Convergence Risk
10. Collins Aerospace: Ransomware Grounds European Airports
Across these incidents, each of which SOCRadar breaks down in detail, several patterns repeat. Initial access often began with stolen credentials or social engineering rather than advanced exploits. Supply chains amplified impact, turning a single breach into hundreds or thousands of downstream failures. Data theft and operational paralysis mattered more than encryption, and in some cases, the true consequences only emerged months later through regulatory findings or confirmed human impact.
Cybercrime Magazine is Page ONE for Cybersecurity. Go to any of our sections to read the latest:
- SCAM. The latest schemes, frauds, and social engineering attacks being launched on consumers globally.
- NEWS. Breaking coverage on cyberattacks and data breaches, and the most recent privacy and security stories.
- HACK. Another organization gets hacked every day. We tell you who, what, where, when, and why.
- VC. Cybersecurity venture capital deal flow with the latest investment activity from various sources around the world.
- M&A. Cybersecurity mergers and acquisitions including big tech, pure cyber, product vendors and professional services.
- BLOG. What’s happening at Cybercrime Magazine. Plus the stories that don’t make headlines (but maybe they should).
- PRESS. Cybersecurity industry news and press releases in real time from the editors at Business Wire.
- PODCAST. New episodes daily on the Cybercrime Magazine Podcast feature victims, law enforcement, vendors, and cybersecurity experts.
- RADIO. Tune into WCYB Digital Radio at Cybercrime.Radio, the first and only round-the-clock internet radio station devoted to cybersecurity.
Contact us to send story tips, feedback and suggestions, and for sponsorship opportunities and custom media productions.
