Winning The Battle Against Ransomware

Ransomware is a form of malware designed to damage and destroy computers and computer systems, usually to facilitate extortion.  Just one successful ransomware attack that leads to a data breach is an existential threat to any organisation, with the average cost of a ransomware-related data breach stands at $4.54m, which can take down many companies. 

It is also increasingly linked to data theft, and to threats to publish sensitive information online. Mass data loss from an attack can be irreversible, even when the ransom is paid.  After a downturn in attacks and payouts in 2022 ransomware returned with a vengeance in 2023 with  514 reported attacks in September alone and the trend will likely grow in 2024.

The highest-profile ransomware incident in 2023 was the attack on the MGM casino and hotels business September 2023, which forced the company to shut down its nationwide computer network, incurring an estimated $100 million loss. The same attacker, also hit rival gaming giant Caesars Entertainment, which paid a $15 million ransom. 

One important solution is context-sensitive defence, which has a threat exposure reduction, deep learning anti-malware protection, and comprehensive anti-ransomware and anti-exploit capabilities. 

A key components of context-sensitive defence is the adaptive nature of endpoint security that can automatically apply more aggressive protection when a device is under attack. However healthcare often don’t have context-sensitive defences and this trend is having a greater impact was the continuous onslaught upon health-care providers, who are hit by ransomware attacks and these attackers hit even harder in 2023. 

Healthcare ransomware attacks can lead to hospital increasing the risks on patients who need immediate treatment for such time-sensitive emergencies as strokes and heart attacks.

Overall, organisations seemed to be growing more confident that they could successfully respond to ransomware attacks. 70% of survey respondents had "moderate to high levels of confidence" in their companies' abilities to handle ransomware attacks, and 79% said they had mostly or fully completed secure backups of critical data.

Unfortunately, organisations in sectors hit hardest by ransomware, such as healthcare and education, often have ineffective security safeguards. Few educational institutions are public companies, but we may see a record number of breach-related SEC penalties levied against publicly traded healthcare providers in 2024. 

Even the best cyber security systems sometimes fail, so make sure that all sensitive data is protected by multiple layers of defence. 

At a minimum this should include: file encryption, including data stored in the cloud, employee access controls, multi-factor authentication, network segmentation and limiting or turning off remote access to the network. 

Parlaiment.UK:    SC Magazine:   Malware.news:    Sonic Wall:     Graphus.AI:     Help Ransomare:   

Power Grid International:    Cybersecurity Collaboration      Imge: Shubham Dhage

You Might Also Read: 

Quadruple Extortion Ransomware:

DIRECTORY OF SUPPLIERS - Ransomware Protection:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible



 

« 23andMe Blames The Victims
Airbus To Pay €1.8bn To Buy Atos Cyber Security Unit »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

FT Cyber Resilience Summit: Europe

FT Cyber Resilience Summit: Europe

27 November 2024 | In-Person & Digital | 22 Bishopsgate, London. Business leaders, Innovators & Experts address evolving cybersecurity risks.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Venafi

Venafi

Venafi is a world-class cyber-security company dedicated to protecting machine identities for our hyper-connected digital economy.

Mocana

Mocana

Mocana provides a software platform that allows you to develop, test and distribute more secure IoT devices and services.

Cyber Akademie (CAk)

Cyber Akademie (CAk)

Cyber Akademie is a training and education center providing high-quality training and information events on information security and data protection.

Towergate Insurance

Towergate Insurance

Towergate Insurance is a leading UK specialist insurance broker. Business products include Cyber Liability Insurance.

ACROS Security

ACROS Security

ACROS Security is a leading provider of security research, real penetration testing and code review for customers with the highest security requirements.

Dale Peterson

Dale Peterson

Dale Peterson, a leading ICS security and control system IT information expert, provides consulting services to assess and improve the security of SCADA and DCS.

Liongard

Liongard

Liongard automates the management and protection of modern IT environments at scale for IT MSPs - Managed Service Providers and Enterprise IT Operations.

Noblis

Noblis

Noblis is a dynamic science, technology, and strategy organization dedicated to creating forward-thinking technical and advisory solutions in the public interest.

Identity Management Institute (IMI)

Identity Management Institute (IMI)

Identity Management Institute (IMI) provides professional training and certification in cyber security with a focus on identity and access management, identity theft, and data protection.

Splashtop

Splashtop

Splashtop’s cloud-based, secure, and easily managed remote access solution is increasingly replacing legacy approaches such as virtual private networks.

Entech

Entech

Entech is a managed IT service provider. We work behind the scenes on your network to ensure data security and integrity.

Invictus International Consulting

Invictus International Consulting

Invictus International Consulting are a recognized leader in full-spectrum cyber technology solutions designed to protect the security of our nation's global defense and critical infrastructure.

Redcoat AI

Redcoat AI

Redcoat AI provide a comprehensive security platform that continuously evolves with the threats and opportunities presented by AI.

COGITANDA Dataprotect

COGITANDA Dataprotect

COGITANDA are a group of companies focused on dealing with cyber risks, managing them and insuring them.

Coalition for Secure AI (CoSAI)

Coalition for Secure AI (CoSAI)

CoSAI is an open ecosystem of AI and security experts from industry leading organizations dedicated to sharing best practices for secure AI deployment and collaborating on AI security research.

Velotix

Velotix

Velotix empowers organizations to maximize the value of their data while ensuring security and compliance in a rapidly evolving regulatory landscape.

SecAI

SecAI

SecAI is an innovative threat intelligence-driven, and AI-powered vendor aiming at cyber threat detection and response.