How Safe is AI for your Company? India’s Ransomware Reality

What happens when the same technology that powers your productivity also fuels your biggest digital threat? As AI sweeps across India’s startup and corporate landscape, cybercriminals are finding new ways to weaponize it. From deepfake voice scams to AI-written phishing emails, attackers are becoming smarter — and faster — than ever before.

According to a new OpenText Cybersecurity 2025 Ransomware Survey, nearly half of Indian organizations suffered at least one ransomware attack in the past year. Even more alarming — over 70% reported a rise in AI-driven phishing and impersonation attempts, placing India among the world’s most targeted markets.

AI: The Double-Edged Sword of the Cyber Age

The OpenText report captures a striking paradox — while 95% of Indian organizations allow employees to use generative AI tools, barely half have a formal governance or data privacy policy in place. That means while companies rush to embrace AI for innovation, they’re often leaving their back doors wide open for attackers.

“AI fuels productivity while also heightening risk through insufficient governance and its expanding use in attacks,” said Muhi Majzoub, Executive Vice President, Security Products, OpenText. “Managing information securely and intelligently is essential to building resilience in organizations of any size.”

AI is transforming both sides of the cyber battlefield — empowering defenders but also supercharging attackers. The result? A dangerous “AI confidence gap,” where optimism about resilience outpaces actual preparedness.

India Tops Global Charts in Ransom Payments

When ransomware hits, Indian organizations are more likely than most to give in. Nearly 70% of affected companies paid ransom to recover their data — one of the highest payment rates globally. Yet, only 12% managed to fully recover encrypted or stolen data.

Still, 98.6% of Indian respondents said they’re confident in their ability to recover from a ransomware attack — a sign that perceived readiness may be masking real vulnerabilities.

How India’s Enterprises Are Fighting Back

Despite rising threats, Indian companies are fighting back hard. Cybersecurity budgets are shifting, with cloud security (68%), network protection (60%), and backup technologies (58%) set to dominate investments in 2026.

Crucially, cyber risks are no longer just an IT problem. The report found that 84% of Indian boardrooms now rank ransomware among their top three business risks, compared to the global average of 71%. That awareness is translating into action — 80% of firms now conduct regular security awareness training, and 76% test their ransomware recovery plans multiple times a year.

The Weakest Link: Third-Party Vendors

However, the battle is far from over. The study warns that supply chain and vendor-related breaches are now among the most common attack vectors. Nearly two-thirds of Indian organizations reported being impacted by a vendor or managed services provider breach in the past year.

To mitigate this, 91% of organizations now conduct formal cybersecurity assessments of their software suppliers, and 83% outsource parts of their security operations to managed service providers. Yet, this increasing dependence on external vendors also raises cascading risks across interconnected digital ecosystems — particularly in sectors like tech, finance, and manufacturing.

The OpenText findings underscore one crucial message — ransomware is not a solitary battle. True resilience depends on how effectively organizations, partners, and technology providers collaborate to identify and close security gaps before they’re exploited.

As AI continues to shape both offense and defense in the cyber world, India’s readiness will no longer be judged by how fast it recovers — but by how intelligently it governs, protects, and shares responsibility across its digital networks.

The question is no longer if artificial intelligence-driven attacks will happen — but how prepared India’s enterprises will be when they do.

Disclaimer: This article is based on insights and findings from the OpenText Cybersecurity 2025 Ransomware Survey, as shared by the company. All data and statements reflect the original survey report.