"Backup Repositories Targeted in 93% of Ransomware Attacks"

Security researchers at Veeam discovered that 85% of organizations have suffered at least one ransomware attack over the past 12 months.  The researchers warned that if this trend continues, "more organizations will suffer a ransomware attack than turn a profit." The researchers also found that in 93% of ransomware incidents, the threat actors target the backup repositories, resulting in 75% of victims losing at least some of their backups during the attack and more than one-third (39%) of backup repositories being completely lost.  Organizations are still ill-prepared to face this threat.  The researchers noted that most (80%) continue to pay the ransom despite multiple advisories against it.  They primarily do that to get their data back, yet 21% don't, even after paying the ransom.  Additionally, many respondents to the researcher's survey acknowledge that progress needs to be made in incident response.  For example, despite 87% claiming they have a risk management program that drives their security roadmap, only 35% believe their program is working well, and 52% are seeking to improve their situation.  Moreover, while respondents cited "clean backup copies" and "recurring verification that the backups are recoverable" as the most common elements of the incident response playbook in preparation against a cyberattack, 60% of organizations say there is insufficient alignment between their backup and cyber teams.

Infosecurity reports: "Backup Repositories Targeted in 93% of Ransomware Attacks"