1Ransomware Poses Evolving Threat to Enterprises in 2017, Report Finds
2Companies Are Constantly Under Attack
3Not All Companies Recognize the Signs of an Attack
One of the problems with ransomware is that many targeted companies don’t realize they’re under threat until it’s too late. More than 4 in 10 companies said they don’t know how often their networks are being targeted by ransomware creators, effectively making it difficult to fight attacks until it’s too late.
4IT Might Be Overestimating Defense Strength
Despite more than half of companies surveyed facing ransomware in 2016 and many admitting they wouldn’t know when they’re being attacked, 59 percent of corporate security leaders said their existing ransomware defenses are “above average or superior.” Trend Micro said in a statement that there is a “disconnect between the perception of organization security defenses and the number of effective ransomware attacks.”
5New Ransomware Families Emerge Monthly
Unfortunately for companies, there’s little chance of ransomware slowing down anytime soon. In fact, Trend Micro found that an average of 10 new ransomware families cropped up each month in 2016. That means each month companies need to worry about 10 more threats than they faced in the previous month.
6Some Companies Are Being Pelted
7Employees Are Unwitting Allies of Ransomware Distributors
8Closely Guard Corporate Website
Keeping a close eye on the corporate website might be important: The report found that 65 percent of ransomware finds its way into the network via compromised websites, according to Trend Micro. In many cases, the ransomware flows from the website to an employee’s email, where a malicious link is clicked and the company finds itself in trouble.
9Ransomware Is Costly Even If Hackers Don’t Get Paid
Ransomware obviously can be costly if companies decide to pay the ransom to hackers to unlock their networks. However, 59 percent of respondents said that ransomware’s greatest consequence is business disruption. Another 28 percent of respondents said that ransomware also can cause reputational damage that troubles their businesses.
10How Most Companies Protect Themselves
In 78 percent of cases, companies are using data backup and recovery to sidestep ransomware attacks. The idea is that should data is compromised and deleted off the network by a hacker, it can be restored quickly from a backup. Thanks to this methodology, just 23 percent of ransomware victims actually paid a ransom in 2016.
11How Companies Should Protect Themselves
Trend Micro and ISMG say hackers know companies typically protect themselves by using data backup and recovery. So they’ve changed tack and are exploiting weaknesses before data can be backed up and restored. The companies recommend a multilayered response to ransomware by protecting email, websites, endpoints, networks and servers in addition to data backup and recovery.