Ransomware is a type of malicious software used by cybercriminals to block you from accessing your own data. The digital extortionists encrypt the files on your system, add extensions to the attacked data, and hold it “hostage” until the demanded ransom is paid.
After the initial infection, the ransomware may attempt to spread throughout your network to shared drives, servers, attached computers, and other accessible systems. If the ransom demands are not met within the cyber crooks’ timeframe, the system or encrypted data remains unavailable, or your data may be deleted by the software and the decryption key obliterated.
So to answer the question, “What is ransomware?”, Ransomware is a potential nightmare for unprepared IT administrators.
Ransomware is an obvious threat and is mostly triggered by users clicking a link
The threat is imminent and has a gigantic impact on your operations. Ransomware is a type of malicious software cybercriminals use to block you from accessing your data.
The digital extortionists encrypt the files on your system, add extensions to the attacked data, and hold it “hostage” until the demanded ransom is paid.
The reason this type of ransomware is so dangerous is that once cybercriminals get ahold of your files, no security software or system restore can return them to you.
- 365% – The percentage increase in detections of ransomware by Malwarebytes business customers from Q2 2018 to Q2 2019. At the same time, detections on consumer devices decreased – probably indicating that ransomware perpetrators realized the real money is in attacking businesses.
- 7.3 – The average number of days a ransomware incident lasts, according to Forrester Research.
- 200,000 – The number of victims of the 2017 WannaCry attack on the first day.
- $30 million – Losses due to the SamSam ransomware, according to the U.S. Department of Justice in announcing the indictment of two Iranian men for using SamSam to extort “more than 200 victims [including] hospitals, municipalities, and public institutions.” Actual ransom revenues were “over $6 million,” it said.
- 17.5% – The percentage of ransomware victims in 2019 who paid the ransom but didn’t get their data back, according to the CyberEdge Group 2019 Cyberthreat Defense Report. Meanwhile, 27.6 percent of victims paid the ransom and recovered their data, 10.6 percent refused to pay and lost the data, and 44.4 percent refused to pay and recovered the data on their own.
There are different angles to look at when preparing a defense against ransomware. Together, they form the triangle of people, process, and technology. Kahuna helps you implement the technology that supports your people, and the process that fits your organization.
People – most attacks happen via email. Work with us to create a user awareness campaign.
Process – we can help you define your back-up recovery strategy. This is essential if you want to comply with NIST or ISO 27001 certification.
We rely on these vendors to support you with the right technology: Palo Alto Networks, Proofpoint, and Cybereason.
Challenge our experts with the security struggles your business is facing.