"Ransomware Attacks Taking Toll on Security Professionals"

In a new study conducted by researchers at Menlo Security, they found that a third of organizations experience a ransomware attack at least once a week, with one in 10 experiencing them more than once a day.  The researchers also found that almost half of the organizations surveyed have been victims of a successful ransomware attack in the last 18 months, with customers and prospects the most likely entry point for an attack.  In terms of main worries related to cyberattacks, respondents said their biggest concern was the risk of employees ignoring corporate security advice and clicking on links or attachments containing malware (46%).  The researchers also found that 41% of respondents mentioned ransomware attacks evolving beyond their team’s knowledge and skillset, while 39% said they mainly worried about them evolving beyond their company’s security capabilities.  The researchers stated that there is a  disparity between the perceived and actual cost of recovering from a ransomware attack, with the average estimated cost being $326,531, while the actual average total cost of recovery from a ransomware attack in 2021 was estimated at $1.4 million.  The researchers also found that there is uncertainty regarding whether a ransom should be paid or not, with two-thirds of respondents saying they would pay a ransomware demand, 31% saying their insurance company should pay it, and nearly one in five saying the government should pay.  Only 27% of respondents said they would never pay a ransomware demand.  

Infosecurity reports: "Ransomware Attacks Taking Toll on Security Professionals"