Web Desk
Kaspersky, in collaboration with VDC Research, reported that ransomware attacks targeting manufacturing organizations in the first three quarters of 2025 could have resulted in more than $18 billion in losses. The figure reflects direct costs from idle workforces during downtime, with broader operational and financial impacts likely far higher.
Regional ransomware detections in manufacturing
According to Kaspersky Security Network data from January to September 2025, the Middle East (7%) and Latin America (6.5%) recorded the highest share of ransomware detections in manufacturing organizations. APAC (6.3%), Africa (5.8%), CIS (5.2%), and Europe (3.8%) followed. All attacks were blocked by Kaspersky solutions, but the potential financial impact if successful was significant.
Estimated financial losses by region
Idle labor costs from ransomware attacks in the first three quarters of 2025 were estimated at:
- APAC: $11.5 billion
- Europe: $4.4 billion
- Latin America: $711 million
- Middle East: $685 million
- CIS: $507 million
- Africa: $446 million
These figures do not include additional losses from supply-chain disruptions, reputational damage, or recovery expenses.
Expert perspectives on ransomware threats
Dmitry Galov, Head of Research Center for Russia and CIS at Kaspersky’s GReAT, noted that no region is exempt from ransomware, with mid-tier manufacturers increasingly targeted due to smaller security budgets and significant supply chain implications. Jared Weiner, Research Director at VDC Research, emphasized that the complexity of manufacturing environments and expertise gaps make cybersecurity management difficult, increasing the risk of financial and reputational damage.
Kaspersky recommendations for ransomware protection
Kaspersky advises organizations to adopt best practices, including enabling ransomware protection across all endpoints. The company offers a free Anti-Ransomware Tool for Business, compatible with existing security solutions. For industrial and critical sectors, Kaspersky provides its Industrial CyberSecurity (KICS) platform, designed for extended detection and response. Non-industrial organizations are encouraged to deploy anti-APT and EDR solutions, enhance SOC team capabilities with threat intelligence, and invest in professional training.
Read related news here: https://greenpost.com.pk/category/business/
