Gone in 60 seconds – The Grim Reality of Ransomware

Damaging effect on business extends far beyond data loss and lack of knowledge means businesses are at risk of immeasurable loss

Monday 27th February 2016. New research from Timico, an end-to-end, managed cloud service provider in partnership with Datto, a business continuity solutions provider, reveals that the effects of Ransomware attacks on UK businesses cause unquantifiable financial cost and immeasurable data loss. Despite this, there is an alarming lack of awareness when it comes to being prepared, with two-thirds of UK businesses having no official Ransomware policy, to guide employees on what to do in the event of an attack.

Ransomware is a malicious software designed to block access to a computer system until a sum of money is paid. It is the biggest global cyber threat to business with reported incidents increasing in frequency and complexity and the financial demands escalating. The National Cyber Security Centre weekly threat report predicts that new innovations in Ransomware are already happening, such as targeting internet-connected devices to create a โ€œRansomware of Things.โ€

60 seconds or less to shutdown

The research report entitled โ€˜The Reality of Ransomware,โ€™ polled 1,000 UK organisations, all of whom were Ransomware victims and many attacked within the last 12 months.

The research found that well over half (68%) of respondents said that the effects of an attack were almost instant with data systems going from fully functional to essentially useless within seconds and minutes.

Nearly a quarter (23%) reported lockdown within just a few seconds, and 18% said that systems were down within a minute of the attack. A further 26% reported systems being blocked within a few minutes.

The drastic effect on business

The Timico and Datto research found that, for the majority (85%) of companies that have been victim to Ransomware, systems were down for a week or more, causing ยฃ1,000s in financial damage a day to most businesses.

A third (33%) had to endure their data down for more than a month, with 15% reporting their data as โ€˜unrecoverable.โ€™

But retrieving data is becoming increasingly more difficult for organisations. The ransom fees, demanded by cyber criminals before they will unlock the victimโ€™s computer system, are rapidly rising.

Nearly a quarter (23%) of respondents paid over ยฃ5,000 to retrieve their data and 26% paid a fee of between ยฃ3,000 – ยฃ5,000. Higher Ransomware fees in large corporates were reported, with a third of corporate businesses paying over ยฃ5,000 to recover data compared to just half that number of SMEs (15%). The highest number of SMEs (35%) paid between ยฃ500 and ยฃ1,500 ransom fee.

The true cost of Ransomware is a financial abyss

Knowing the extent of the cost of the attack on the business is often unknown. Nearly a third (29%) of those polled could not even estimate the overall financial cost to the business of the Ransomware attack, deeming it โ€˜unquantifiableโ€™. Over half (53%) of respondents estimated that the attack had cost the business between ยฃ1,000 to ยฃ2,000 per day in lost revenue, due to its data systems being down.

Lack of guidance leaving organisations vulnerable to loss 

Despite Ransomware being well reported as one of the biggest, evolving threats to organisations worldwide, many staff within UK companies would have no idea what to do in the event of an attack.  Timico and Datto found that a staggering two-thirds (63%) of UK businesses have no official Ransomware policy in place to guide staff on what to do when an attack occurs, leaving them vulnerable to huge and unquantifiable financial and data loss.

[easy-tweet tweet=”A ransomware attack can have a debilitating effect, with long-term consequences” hashtags=”Ransomware,CyberAttack”]

Nabeil Samara, Chief Digital Officer at Timico says. โ€œThese research findings clearly show that the speed of a ransomware attack is almost instant, while the effects on the organisation can be far reaching.

โ€œItโ€™s not just a case of the data loss and financial cost to the business. A ransomware attack can have a debilitating effect, with long-term consequences across the business, with the company even breaching terms of any regulatory bodies that the business holds themselves accountable to. 

โ€œThe Government has now launched its The Cyber Schools Programme but education needs to extend beyond the classroom and into the workplace.  Itโ€™s critical that all organisations, no matter what size, acknowledge the increasing and evolving threat of Ransomware as attacks become ever more frequent and instil a policy, that is regularly updated, to educate staff on what to do if the business comes under attack. Protection and communication are key to the difference between success or failure and will save the business infinite costs in the long run.โ€

Andrew Stuart, Managing Director, Datto EMEA, says, โ€œThe high quantity of strains and constant evolution mean traditional signature-based anti-virus aren’t effective against this threat. A Backup and Disaster Recovery solution which utilises the Cloud can effectively defend against ransomware. This creates regular encrypted backups of your data, and maintains prior versions. In the case of a ransomware attack, businesses can easily ‘roll back’ their data to an uninfected version, so no ransom needs to be paid. And of course, this second copy has the added benefit of preventing data loss via accidental deletion.โ€™’ 

TIMICOโ€™S TOP TIPS TO PREPARING FOR (AND PREVENTING) A RANSOMWARE ATTACK

 

Get senior stakeholder buy-in, so all company Ransomware prevention and response policies are communicated and enforced from the top.

2.

Be proactive with your backup policy, and above all test on a regular basis.

 

3. Educate your users not to open or click on suspicious looking emails or attachments.

 

4. Up to date antivirus software should be considered essential.

 

5. Donโ€™t get complacent โ€“ audit your historic backups, imperative if you have a multi-vendor solution in place.

 

6. Understand your Recovery Time Objective (RTO) i.e. how long can you afford to be down for?

 

7. Understand your Recovery Point Objective (RPO) i.e. how much data can you afford to lose?

 

8. Encourage your users to keep their work and personal data and apps separate.

 

9. Donโ€™t pay the ransom! Itโ€™s still highly unlikely you will get your data back, or if you do it will be in an unreadable format.

 

10. Do report the crime to the police, many donโ€™t and as such attacks go under the radarโ€ฆdonโ€™t let cyber criminals get away with it!
+ posts

Marketing Manager for Compare the Cloud

Unlocking Cloud Secrets and How to Stay Ahead in Tech with James Moore

Newsletter

Related articles

Cloud Security Challenges in the Modern Era

Organisations already have to store files and data in...

Why I welcome AI software development

Today, I will be taking you on a journey,...

A Practical Guide to the EU AI Act

Disclaimer: This article is opinion-based; please seek legal advice...

Building a Smart City

If you ask me how I picture the future,...

Mastering Hypervisors for Enhanced Business Efficiency

The cloud computing landscape is a complex ecosystem characterised...

3952 COMMENTS

Comments are closed.