Geopolitics & Resilience
2026-04-26
11 minute read
25 sources
Critical Infrastructure Ransomware in 2026: Sector Exposure, Insurance Capacity, and the New Regulatory Floor
Healthcare, water, and OT-heavy sectors absorbed the brunt of the 2024 to 2025 ransomware wave. Boards, CISOs, regulators, and underwriters now operate under a tighter set of disclosure rules, sanctions risks, and policy exclusions. This brief sets out the data, the actor map, and the decisions that follow.
Ransomware against US and EU critical infrastructure continued at high intensity through 2024 and 2025, with healthcare displacing every other sector as the largest reported segment in CISA and FBI IC3 data. The Change Healthcare incident at UnitedHealth Group, the American Water Works compromise, the CDK Global outage, and the Ascension ...