Increase in Pre-Ransomware Alerts Issued by CISA in 2024
Ransomware attacks have been on a steady rise in recent years, with over 317 million attempts globally reported in 2023. This trend continued into 2024, with a notable increase in reported attacks. According to data from the first half of 2025, there were 3,627 incidents recorded, marking a 47% increase from the same period in 2024.
In response to this escalating threat, the Cybersecurity and Infrastructure Security Agency (CISA) has been working diligently to enhance cybersecurity resilience across various sectors. The agency's efforts typically involve conducting risk assessments, issuing alerts and guidelines, running cybersecurity awareness campaigns, and collaborating with private sector entities to share threat intelligence and develop strategies to combat ransomware.
In fiscal year 2024, CISA issued 2,131 pre-ransomware notifications, nearly double the amount from the previous year, and released almost 1,300 cyber defense alerts and advisories through the Joint Cyber Defense Collaborative. Moreover, more than 250 technology companies have signed the secure-by-design pledge introduced by CISA's Director, Jen Easterly.
CISA's growing efforts around cybersecurity alerts, advisories, and pre-ransomware notifications indicate the increase in malicious activity and ransomware attacks. However, despite these efforts, enterprises and critical infrastructure still face deep-rooted security challenges and expansive malicious activity.
As CISA prepares for a transition in leadership, it reflects on its accomplishments during fiscal year 2024. The agency's year in review highlights the ongoing security challenges facing critical infrastructure, emphasising the need for continued collaboration and vigilance in the fight against ransomware attacks.
[1] CISA's new headquarters, a $524 million centralized facility, started construction this year and is scheduled for completion in 2027. [2] Jen Easterly's initiative to shift the security responsibility from customers to technology vendors was introduced as a voluntary pledge in May. [3] CISA has been working collaboratively to reduce risk to the cyber and physical infrastructure that Americans rely on every day. [4] CISA Director Jen Easterly plans to step down from the agency when President-elect Donald Trump takes office. [5] The data on the number of ransomware attacks in 2024 is based on the first half of 2025, as specific data for 2024 wasn't directly available in the search results.
- The Cybersecurity and Infrastructure Security Agency (CISA) has been taking concrete steps to combat the escalating ransomware threat, such as issuing pre-ransomware notifications and collaborating with the private sector for threat intelligence sharing.
- The data-and-cloud-computing sector is particularly vulnerable to ransomware attacks, with a notable increase in reported incidents, and technology companies, including over 250 who have signed the secure-by-design pledge, are playing an important role in addressing these threats.
