Ransomware is no longer a sporadic disruption -- it’s a persistent, escalating threat shaping how businesses operate in a digital-first world. Dale "Dr. Z" Zabriskie, Field CISO at Cohesity, warns that as cyberattacks become more sophisticated and frequent, the cost of inaction is greater than ever. For 2025, the emphasis will shift from reactive security to proactive resilience, with leaders prioritizing incident response and recovery as critical business imperatives.
The Evolving Ransomware Threat
“In the past year, we have witnessed ransomware attacks increase in sophistication, persistence, and frequency across industries, without an end in sight,” Zabriskie stated. Bad actors are no longer relying on simple exploits but are leveraging advanced techniques to cripple organizations and extract maximum value from their targets.
These attacks have a profound impact beyond immediate financial loss. By stalling operations and eroding trust, ransomware can threaten a company’s ability to function altogether. Zabriskie stresses that organizations face a stark choice: “Regularly evaluate the ability to defend against cyberattacks or risk losing business-sensitive information.”
Budgeting for Resilience, Not Just Efficiency
Historically, IT budgets have been built around efficiency—optimizing for smooth operations during periods of stability. But as Zabriskie points out, this model is no longer sufficient in a world where cyberattacks are inevitable. “To ensure business continuity, it’s important to budget for resiliency when something goes wrong,” he explained.
Resilient organizations, Zabriskie argued, are those that consistently test and refine their cybersecurity measures. “Strengthening cybersecurity principles and continuing to test them throughout the year allows leaders to trust that their practices are solid, robust, and capable of defending against emerging threats and bad actors looking to prey on vulnerabilities,” he said.
This shift in mindset will require a reallocation of resources, with increased investment in technologies and strategies that focus not just on prevention but on recovery.
A Fully Tested Plan: The Key to Recovery in 2025
While preventing every cyberattack is impossible, minimizing its impact is achievable. Zabriskie predicts that 2025 will see a greater emphasis on incident response and recovery planning, with leaders prioritizing these measures as indispensable assets.
“In 2025, we should expect business leaders to recognize that though it is not always possible to prevent a cyberattack, having a fully tested plan in place can be one of their most important assets,” Zabriskie said.
He envisions a future where organizations don’t just aim to protect their systems but also focus on recovery, ensuring continuity in the face of disruptions. “Organizations will work to better protect and recover their information and systems in the face of cyber events—in turn, minimizing the impact of an attack and facilitating a swift recovery,” he added.
Rethinking the Role of Cybersecurity
Zabriskie’s insights highlight a broader evolution in cybersecurity. As threats grow in complexity and scope, businesses can no longer afford to view security as a technical function relegated to IT teams. It must be integrated into core business strategies, with leaders embracing resilience as a competitive advantage.
The ransomware era has underscored one critical lesson: inaction is no longer an option. As we approach 2025, the organizations that survive and thrive will be those that prepare for the worst while aiming for the best—budgeting for resilience, testing their plans, and staying one step ahead of adversaries.
For Zabriskie and others on the frontlines, the message is clear: resilience isn’t just a strategy; it’s a necessity. The question now is whether businesses will heed the call before it’s too late.