Databarracks' Data Health Check 2025: cyber, continuity and recovery under the spotlight

PR Newswire

Wed, Jul 30, 2025, 6:36 AM 3 min read

AI threats rise, testing becomes the gold standard and ransomware payments plummet.

, /PRNewswire/ -- Organisations across the UK are under more pressure than ever to adapt and respond to growing IT and cyber threats, according to the newly published Databarracks Data Health Check.

Now in its 18th year, the Data Health Check surveys 500 IT professionals across a range of industries. This year's report reveals that while overall preparedness is improving, organisations face a rapidly evolving landscape – particularly when it comes to cyber threats and AI risks.

Key findings from the 2025 Data Health Check include:

• For the third year running, cyber is the leading cause of downtime and data loss: 71% of organisations experienced a cyber attack in the past year.

• Testing has become the gold standard: 9 in 10 organisations tested elements of their recovery capabilities in the last 12 months, up significantly from previous years.

• AI threats top the agenda: AI-driven cyber attacks, including deepfakes, are seen as the biggest IT resilience challenge over the next five years.

• Ransomware recoveries improve: Just 17% of organisations paid the ransom following a ransomware attack, with most recovering from backups.

James Watts, Managing Director at Databarracks, commented:

"This year's findings show that resilience isn't standing still – but neither are the threats. The rise in AI-driven attacks and the sheer volume of cyber incidents are forcing organisations to become more agile and better prepared.

"It's encouraging to see testing now recognised as the gold standard. Nine in ten organisations tested their recovery in the last year. But we can't afford to stop there. Recovery confidence is falling slightly, suggesting that testing is revealing gaps, not just ticking boxes. That's the whole point – realistic testing leads to real improvement."

Chris Butler, Resilience Director at Databarracks, added:

"There's a clear shift happening in how organisations view resilience. The focus is no longer just IT – it's about integrating cyber, risk, continuity and crisis management into one coordinated approach.

"AI-driven threats are the clearest example of this. They're not just a technical risk – they hit reputation, communications and trust. It's why integrated resilience is now the top priority for large and medium-sized organisations.

"The good news is that organisations are responding. In the last 12 months, three-quarters have conducted security reviews in response to threats. And ransomware responses show real progress – most victims now recover without paying, thanks to air-gapped and immutable backups."