New research from Sophos makes clear that the problem is significant.
It found that 94% of organisations hit by ransomware in 2023 said that the cybercriminals attempted to compromise their backups during a ransomware attack. In other words, it's unusual for backups not to be an attractive target in a malicious attack.
The situation is even worse for sectors such as state and local government, the media, and the leisure and entertainment industry, with 99% of attacks attempting to compromise backups.
Of course, when backups are successfully compromised, the impact is significant – with ransom demands, the likelihood of payment, and the amount paid by the corporate victim essentially doubling compared to incidents where the backups remained safe.