"Paying Ransomware Paints Bigger Bullseye on Target’s Back"

Security researchers at Cybereason surveyed 1,456 cybersecurity professionals during their new study.  Participants represented a global mix of cybersecurity professionals in the United States (24 percent), U.K. (17 percent), U.A.E., Japan, Singapore, and others.  A broad mix of industries were represented in the data and ranged from manufacturing (14 percent), finance (10 percent), and others.  The researchers found that ransomware attackers often strike targets twice, regardless of whether the ransom was paid.  Eighty percent of ransomware victims that paid their attackers were hit a second time by the same ransomware group.  More than half (68%) said they were hit a second time within the very same month as their first attack.  After being breached a second time by the same attackers, the threat actors usually demand even a higher ransom amount the second time around.  Of the participants that paid the second time, 9% were targeted a third time.  The researchers suggest that organizations should never pay the ransom demanded.  

Threatpost reports: "Paying Ransomware Paints Bigger Bullseye on Target’s Back"