IBM Power Cyber Vault

• 92% - of industries recognized ransomware as a primary threat⁷
• 30% - increase in victims, compared to 2024⁸
• ~7,458 victims publicly listed on ransomware leak sites in 2025 (record high)⁷
• 4,701 attacks (Jan-Sept 2025) vs 3,219 in same period 2024⁹
• A ransomware attack occurs roughly every ~19 seconds globally¹⁰
• 2025 is widely considered the most active ransomware year on record

• 59% - Organizations were hit by ransomware in the last year ¹
• 94% - Victims said the attackers targeted their backups ¹
• 70% - Attacks resulted in data encryption ¹
• 78% - Organizations took more than 100 days to recover ²
• 56% - Pay ransom to get data back ¹
• $4.88M USD - Average cost of a breach ²

United States

• Interagency paper 'Sound Practices to Strengthen Operational Resilience'
• National Cybersecurity Strategy
• SEC Proposed Ruling for Cybersecurity Risk Management Rule 10

Brazil

• Brazilian General Data Protection Law ("Lei Geral de Protecao de Dados" or "LGPD")
• Resolution 4.502/2016
• Central Bank of Brazil ('BACEN') Resolution 4.893/2021

Europe

• Digital Operation Resilience Act (DORA)

United Kingdom

• FCA PS21/3 Building operational resilience policy statement
• Bank of England Operational resilience Statement of policy

India

• (RBI) Master Direction son Cyber Resilience and Digital Payment security Controls

South Africa

• South African Reserve Bank Prudential Authority 'Principles for operational resilience'

Singapore

• Monetary Authorizy of Singapore 'Guidelines on Risk Management Practices - Operational Risk'

Australia

• Prudential Standar CPS 230 - Operational Risk Management

Definitions

• Cyber Security - 'The ability to protect or defend the use of cyberspace from cyber attacks.'³
• Cyber Resiliency - 'the ability to anticipate, withstand, recover from, and adapt to adverse conditions, stresses, attacks, or compromises on systems that use or are enabled by cyber resources' ⁴

More about Cyber Security & Cyber Resiliency 

• Cyber Resiliency incorporates Cyber Security:
  'Cyber-resilient systems are systems that have security measures or safeguards “built in” as a foundational part of the architecture and design and that display a high level of resiliency.'⁶
• In Cost of a Data Breach Report 2025, cyber resiliency is described as, 'On a long enough timeline, data breaches are inevitable. They happen despite strong preventative measures. While it's important to try to block threats, it can't be an organization's only focus. They must also focus on, and plan for, minimizing damage once an attack gets through and a breach occurs.'⁵
• 'Cyber resiliency is essentially about ensuring continued mission operations despite the fact that an adversary has established a foothold in the organization's systems and cyber infrastructure'⁶
• 'Cyber-resilient systems operate like the human body. The human body has an effective immune system that can readily absorb a continuous barrage of environmental hazards and provides the necessary defense mechanisms to maintain a healthy state. The body also has self-repair systems to recover from illnesses and injuries when defenses are breached. But cyber-resilient systems, like the human body, cannot defend against all hazards at all times. While the body cannot always recover to the same state of health as before an injury or illness, it can adapt. Similarly, cyber-resilient systems can recover minimal essential functionality (e.g., functionality to meet critical mission needs). Understanding the limitations of individuals, organizations, and systems is fundamental to managing risk.' ⁶

Summary

In summary, both cyber security and cyber resiliency are needed by organizations.  Cyber security provides protection and defense against attacks to prevent cyber incidents. But if an incident occurs, cyber resiliency is needed to recover from the cyber incident.