The total cost of ransom payments doubled year-on-year during the first six months of 2020.
Based on incidents reported to Beazley’s in-house breach response team, BBR Services, ransomware attacks increased in terms of both severity and costs this year compared to 2019 and have become the biggest cyber-threat facing organizations.
Paul Bantick, Beazley’s global head of cyber and technology, said: “Our underwriting, claims and threat intelligence database shows that ransomware attacks are much more sophisticated and severe, thus, it is critical that organizations adopt a layered approach to security and take stringent measures to make it hard for threat actors at every step.”
Jack Kudale, founder and CEO of Cowbell Cyber, said those organizations who fall victim to a ransomware attack are often caught off guard with no backup, and their only option is to pay the ransom. “In other words, ransomware attacks are working for the criminals and they can demand higher payment,” he added.
Mohit Tiwari, co-founder and CEO at Symmetry Systems agreed, explaining that running a ransomware campaign (including tools, negotiations and money transfer) is becoming commoditized, and therefore paying the ransom is becoming an acceptable, and even normal, response for victims.
Beazley claimed that ransomware is no longer the sole problem, as the rise of cyber-extortion events will involve threat actors who exploit access into networks, install highly persistent malware, target backups, steal data and threaten to expose the compromise. “Ransomware is avoidable but requires regular and thorough training of employees on how to avoid this evolving threat,” it said.
“Organizations should not only try to prevent a ransomware infection, but prepare in case they do get infected, through multiple layers of security, each reducing the risk and probability of ransomware.”
https://www.infosecurity-magazine.com/news/ransomware-extortion-payments/
Pen Test & Dark Web Scan: $495
Promero provides a Pen Test with unlimited retests for 60 days for up to 50 IP address and a Dark Web Scan to determine if your domain is exposed on the Dark Web for $495, discounted from regular price of $2040. Check https://promero.com/cyber-security-services/