Ransomware continues to be essentially the most profitable enterprise mannequin for cyber crime, and a brand new examine signifies that current endpoint safety strategies will not be sufficient to protect towards it.

The survey from safety consciousness coaching group KnowBe4 questioned greater than 500 organizations in regards to the present state of their ransomware safety, whether or not they had been a sufferer of ransomware, the influence of a profitable breach and their remediation techniques.

It finds that 33 p.c of respondents have skilled a ransomware assault up to now 12 months. Extra regarding is that 53 p.c of organizations that had deployed a number of options towards ransomware nonetheless fell sufferer to it.

As well as 48 p.c of the entire variety of respondents (72 p.c) who had downloaded KnowBe4’s ransomware simulator, RanSim, weren’t capable of detect the simulator’s conduct, regardless of their antivirus deployments.

“Ransomware is primarily delivered through a phishing e mail, which suggests your customers need to be skilled to establish it with the intention to forestall it, making antivirus ineffective at stopping ransomware,” says Stu Sjouwerman, CEO of KnowBe4. “It is a easy idea — if customers can be taught to not click on the hyperlink or open the attachment they received’t infect their workstation with ransomware! An vital layer in any firm’s safety stack is the final line of protection — the human firewall that may be skilled to detect a phishing e mail. As soon as organizations acknowledge this, their safety posture improves dramatically.”

Of these respondents impacted by ransomware, on common six endpoints and two servers had been affected in a given assault, exhibiting that the overall assumption that ransomware takes over just one machine is inaccurate. The bigger influence of a number of machines being hit brought on a mean of 12 hours consumer downtime and 12 hours of IT funding to remediate the issue.

READ  'Fatboy' ransomware makes use of a location-based charging mannequin

The bulk (94 p.c) of companies surveyed did not pay the ransom to decrypt their knowledge. Those who did paid at a price of between three to 5 bitcoins (respectively $three,780 to $6,300 at right this moment’s trade price).

You’ll find out extra within the full report which is on the market on the KnowBe4 web site.

Picture credit score: Ton Snoei / Shutterstock

Source