"Ransomware Threat Just as Urgent as Terrorism, Say Two-Thirds of IT Pros"

Researchers from Venafi have found that nearly two-thirds (60%) of security professionals believe the threat of ransomware should be treated with the same urgency as terrorism.  The survey of 1500 IT security decision-makers from the UK, US, Australia, France, and Germany highlights the growing concerns about the scale and damage of ransomware attacks, which have surged during the COVID-19 crisis.  More than two-thirds (67%) of respondents from organizations with over 500 employees experienced a ransomware attack over the past 12 months. For organizations with 3000-4999 employees, that figure rose to an astonishing 80%.  Of those organizations that have been breached, 17% admitted they paid the ransom. US respondents paid most often (25%), while Australian firms paid the least often (9%).  Worryingly, over a third (37%) of the IT decision-makers admitted they would pay a ransom following a successful attack. However, over half (57%) of this group said they would reverse that decision if they were required to publicly report the payment. The researchers stated that this requirement could be put into law in the US under the Ransomware Disclosure Act, a bill recently introduced to the US Senate. This would force organizations to disclose any ransom payments to the Department of Homeland Security (DHS).  Despite the growing menace of ransomware, over three-quarters (77%) of the respondents said they were confident the tools they have in place will protect them from these attacks. Australian IT decision-makers had the most confidence (88%) of all the countries included.  However, the survey also found that most organizations do not use security controls that can prevent ransomware attacks early in their life cycle. For example, just 21% restrict the execution of all macros within Microsoft Office documents and under a fifth (18%) restrict the use of PowerShell using group policy.

 

Infosecurity reports: "Ransomware Threat Just as Urgent as Terrorism, Say Two-Thirds of IT Pros"

Submitted by Anonymous on