The risk of a ransomware attack continues to increase at a frightening triple-digit annual growth rate. How bad is it? Bad, really bad. Businesses based in the U.S. face a 60% chance of an attack, compared to 31% chance in EMEA and 9% in the Asia-Pack region. As the attackers’ sophistication increases and cybergangs are forming, it is important to understand what the attackers are going after and how to increase your ransomware resilience.
Ransomware Demand and Payment Trends
Don’t Count on the Government for Help
A report from The Committee on Homeland Security and Governmental Affairs “America’s Data Held Hostage: Case Studies in Ransomware Attacks on American Companies” documents notable attacks on three U.S. companies from REvil – a Russian cybercrime ring. The report found the federal government's response to these incidents sorely lacking and "recalled there was no 'here's a playbook' discussions with the FBI regarding how to best respond.” The document doesn't name the three companies, all of which reported the attacks to law enforcement, and instead refers to them as entities A, B, and C:
The Senate Committee recommends that companies take steps to make it more difficult and costly for ransomware gangs to breach their networks. This includes security basics like patching vulnerabilities, using multi-factor authentication, keeping device and software inventories, requiring employees use complex passwords, maintaining offline backups, and encrypting sensitive data. It also calls on the FBI and the Cybersecurity & Infrastructure Security Agency (CISA) to work more closely to share information and do more to help ransomware victims recover their data and mitigate damages.
How to Improve Your Security Posture -- Start with These 6 Steps
10 Ways to Increase Your Ransomware Resilience
As the bad actors continue to hone their tactics, it’s more important than ever to bolster your defenses and improve your ransomware resilience. Here are 10 ways to increase your resilience:
You’ve Been Attacked – Now What?
Clearly time is of the essence once the ransom demand has been made. Expert and immediate help is critical. Our partner, Palo Alto’s Unit 42 can provide you with the hotline needed to negotiate next steps. Their world-renowned incident response team and security consulting experts will guide you before, during and after an incident with an intelligence-driven approach.
How Daymark Can Help
Daymark’s team of senior consultants can help your business approach the threat of ransomware pragmatically, across many facets of your environment. Our industry knowledge from data center to cloud, coupled with strategic partnerships like Palo Alto, can help ensure that your business is taking the appropriate precautions and employing the most useful technology to protect and recover the data most important to you.
Contact us if you have questions or would like to take the next steps for ransomware recovery advance planning.