Linux systems are less targeted because they're less commonly used, their userbase on average knows more about technology and they're inherently more secure.
Ha! This got a good chuckle out of me. Check again; this happens more often than you would think in the web hosting business, especially the small to medium business segment. "It's just a website how hard could it be?"
If I had a nickel for every RHEL 5 (yes, 5!) box still running after we begged customers to please, please move to something actually receiving patches...
In theory ransomware shouldn't have as large of an impact, but in practice backups are not a magical wand of "restore website and lose 0 transactions" either. That's assuming the backups are actually configured to grab the correct data, and haven't been silently failing for months...
I meant for people using it as their daily driver operating system (not servers).
Most linux enthusiasts know a bit more/are interested in technology so they would be likely to engage in better security practices than a typical "home user" using Windows.
In addition features like package managers and actually functioning permissions systems help as well (how long has Windows had public UAC bypasses?)
Of course you're correct and most servers run linux and get hacked every millisecond otherwise though because they don't keep them updated.