OpenText, a global leader in secure information management for AI, today released new findings from its fourth annual Global Ransomware Survey, revealing that over half of Indian enterprises faced ransomware attacks in the past year, with more than 7 in 10 (71%) reporting a surge in AI-driven phishing or deepfake attempts, making India one of the most targeted and AI-exposed markets globally.
The survey report also highlights that Indian organizations are stepping up their cybersecurity posture, with cloud security (68%), network protection (60%), and backup technologies (58%) emerging as top priorities for 2026, indicating a proactive approach to securing hybrid and AI-powered environments.
The survey, conducted with nearly 1,800 security practitioners and business leaders across seven countries, including over 200 from India, found that ransomware incidents continue to be widespread. In India, nearly 70% of affected organizations admitted to paying a ransom to regain access to their data, marking one of the highest rates globally. However, despite these persistent threats, 98.6% of Indian respondents expressed confidence in their organization’s ability to recover, underscoring a widening gap between perceived resilience and actual exposure.
The report also underscores the expanding role of AI in both cyberattacks and defence. Over 71% of Indian organizations observed an increase in phishing or ransomware attempts linked to AI, while 66% encountered deepfake-style impersonation attacks such as voice and video spoofing. This surge in AI-enabled threats comes as an overwhelming majority of organizations (95%) allow employees to use generative AI tools, yet just over half have a formal AI-use or data privacy policy in place.
“Organizations are right to be confident in their progress in security posture, but they can’t afford to be complacent,” said Muhi Majzoub, Executive Vice President, Security Products, OpenText. “AI fuels productivity while also heightening risk through insufficient governance and its expanding use in attacks. Managing information securely and intelligently is essential to building resilience in organizations of any size.”
The findings point to a widening AI confidence gap as enterprises are quick to embrace AI for productivity and innovation but slower to implement governance frameworks that ensure compliance, privacy, and security. Among Indian organizations hit by ransomware, only about 12% were able to fully recover their encrypted or stolen data, indicating that preparedness often falters in practice.
Ransomware incidents in India are also becoming more complex, with attacks frequently entering through third-party service providers or software supply chains. Nearly two-third of surveyed organizations reported being impacted by a vendor or managed services partner breach in the past year. In response, 91% now conduct formal cybersecurity assessments of software suppliers, and 83% outsource parts of their security operations to managed service providers. Yet, even as these measures strengthen organizational defenses, heavy dependence on third-party ecosystems continues to expose businesses to cascading risks, especially in sectors such as technology, financial services, and manufacturing.
Encouragingly, ransomware is no longer viewed as an isolated IT concern but as a board-level business issue with 84% of Indian executive teams considering ransomware among the top-three business risks which is higher than the global average(71%). Eight in ten (80%) organizations conduct regular security awareness training and simulations for employees, and more than 76% test their ransomware recovery plans multiple times a year, reflecting stronger cyber readiness across leadership and operations.
The findings of this survey reinforces that protecting against ransomware now depends not just on internal defences, but also on how effectively organizations, partners, and technology providers collaborate to close security gaps before they are exploited. As AI continues to shape the future of cybersecurity, readiness in India will increasingly be measured not only by recovery speed, but by the strength of governance, visibility, and shared responsibility across the digital ecosystem.