What You NEED to Know About Ransomware
Go Back

What You NEED to Know About Ransomware

Researchers say ransomware attacks on the rise as more people work from home. Phishing attacks have increased by 350 percent during the COVID-19 pandemic. To help protect as many companies as possible, we go into detail about what you need to know about ransomware, important stats about it, and tips on how to protect your data and your business.

What you need to know about Ransomware

Ransomware is often spread through phishing emails that contain malicious attachments or through drive-by downloading. Drive-by downloading occurs when a user unknowingly visits an infected website. The malware is then downloaded and installed on the user's computer with the user's knowledge.

Not only has the number of attacks increased, but ransomware has continued evolving. In fact, some of the most popular forms of ransomware last year have disappeared while new forms have emerged. In some cases, the new versions are even more disruptive and damaging.

Organizations should also regularly back up their systems. They should also test those backups on a regular basis as part of a recovery plan. Therefore, if the worst happens and ransomware does infiltrate the network, there's a known method of restoring it without the need to pay cybercriminals.

Here are some important stats on ransomware

  • Gartner says that 90% of ransomware attacks are preventable
  • 28% of small and mid-size businesses are currently unprepared for an attack
  • Ransomware costs are forecast to reach a record $20 Billion by 2021

  • $8,100 The average cost of ransom per incident in 2020
  • 104% is the average increase of ransom payment amounts in Q4 2019
  • The average cost of a an attack on businesses in 2019 was $133,000.
  • It's estimated that every 11 seconds a business will be attacked in 2021
  • 17% of victims never recover their data

  • A report published in 2019 mentioned, for the first time ever, more than a third (35.7%) of organizations experienced six or more successful attacks.
  • Ransomware Marketplace report from cybersecurity company Coveware, the average number of days a ransomware incident lasts is now 16.2 days – up from 12.1 days in the third quarter of 2019
  • 69% of North American companies admit to being victims of ransomware attacks. Many others don’t report it at all. Thus, bringing the number to 80% or more.

Why you should never pay the ransom 

There are two main reasons you should never pay the ransom. First, you will identify yourself to the attackers. By identifying yourself, they can, and rest assured, they will target you again. Your willingness to pay might lead to further attacks. You are letting the ransomware attackers win and encouraging them to continue their attacks!

Second, it isn't guaranteed that your data will be accessible! You may pay the ransom and then they may ask for more. Or they may just disappear. So, do not pay the ransom!

How can you protect yourself? 

Backup all your data. Next to your personnel, data is your organization's most valuable asset. Therefore, you should protect it at all costs. Backup your data offline and or offsite.

Don’t be fooled; offsite does not necessarily mean offline. Many clients we speak with have multiple sites or data centers. They send data from one site to another thinking the data is safe.

However, in many cases, clients don’t realize despite the data being on another physical site the logical network is common. Their backups remain “online”. This is where ransomware can “steal” the network credentials of a network administrator and proliferate throughout the entire network and compromise the data.

Test your data backups regularly. Assurance IT recommends performing a data restore on a quarterly basis. This will ensure data integrity and also help understand the effort required in the event of a data disaster.

Resources:

https://www.infosecurity-magazine.com/news/rise-in-ransomware-payments/

https://www.pcmag.com/news/north-american-governments-hit-hardest-by-rise-in-ransomware-attacks

https://security.berkeley.edu/faq/ransomware/

https://blog.iomart.com/why-you-should-never-pay-the-ransom