1,200
Ransomware Incidents Reported
Number of ransomware attacks reported in Iran in 2026
32,500
Average Ransom Paid (USD)
Average ransom paid per attack in USD
1.2 trillion
Cybersecurity Budget (IRR)
Annual cybersecurity budget allocated by Iranian institutions
5,400,000
Phishing Attacks Detected
Number of phishing emails detected in Iran in 2026
38%
Percentage of Organizations with Cyber Insurance
Organizations in Iran with cybersecurity insurance coverage
Iran experienced a significant rise in ransomware attacks in 2026, with over 1,200 incidents reported, reflecting increased cyber threat activity targeting both government and private sectors. The average ransom paid has also increased to about USD 32,500, indicating more sophisticated and costly attacks. Cybersecurity budgets continue to grow, yet many institutions remain vulnerable due to outdated infrastructure and limited awareness.
Phishing remains a major vector for cyberattacks, with over 5.4 million detected emails, underscoring the need for enhanced user awareness and advanced detection tools. Despite rising threats, only 38% of organizations have comprehensive cyber insurance, highlighting a gap in risk management. Iran’s cybersecurity landscape is evolving, but substantial investments and strategic planning are essential to mitigate future risks.
Frequently Asked Questions
What are the most common types of ransomware attacks in Iran?
The most common ransomware attacks involve targeting critical infrastructure, government agencies, and financial institutions using phishing and malware delivery methods.
How can Iranian organizations improve cybersecurity resilience?
Organizations can enhance resilience through regular security training, adopting advanced threat detection, updating infrastructure, and increasing cyber insurance coverage.
Disclaimer: All statistics presented are 2026 estimates and projections based on industry trend analysis, historical data, and publicly available research. Individual data points may vary from actual figures.