In 2016, more than 50 percent of small and medium-sized American companies was the victim of ransomware attacks. Among the businesses affected, 48 percent has paid a ransom, according to the report published by the Ponemon Institute.
On average, last year companies have suffered four ransomware attacks, paid a ransom of $ 2,500 for each incident and have invested 42 hours of work to resolve the attack.
Among the companies that have not paid the ransom, 42 percent said that the fact of having a complete and accurate backup has allowed resolving the situation without giving in to the demands of cyber criminals. Only 13 percent claim to have a high level of preparedness to prevent ransomware. According to the report, all companies are aware of the need to back up, get updated anti-virus and use strong passwords, but too few put these guidelines into practice.
Only 46 percent of respondents said that prevention of ransomware attacks had been a high priority for their company. One reason could be that they consider not to be an attractive target for hackers. According to the report, 57 percent of respondents said that their companies were too small to be a target of ransomware.
A false belief emerged from the survey is that if the ransomware affects, backups makes them unusable. The file that contains the ransomware malware is encrypted and inert, and cannot spread while it is stored in the cloud. You can then recognize it and isolate it so that it might not recover when the infected system is cleaned.
However, losing access to their data is not the only potential consequence of a ransomware attack. According to the survey, 55 percent of enterprises believe very likely or certain that the ransomware has also impacted on the data in some of the infected device.
In addition to antivirus, to avoid the ransomware companies should also train their employees to identify potential attacks. According to the survey, about 29 percent of respondents said they were sure that their employees are able to detect link or potentially harmful sites.
Ransomware will continue to exceed the speed at which companies can defend against it. If companies take to learn something from this survey, it is that they are not the only ones to feel vulnerable to ransomware attacks.