Story image

Cisco report reveals ransomware attacks on the rise: Expert commentary

03 Aug 16

The Cisco 2016 Midyear Cybersecurity Report (MCR) was recently released, with some startling findings – organisations are unprepared for future strains of more sophisticated ransomware.

According to the report, the main contributing factors are fragile infrastructure, poor network hygiene and slow detection rates, which are all providing ample time air cover for cybercriminals to operate. The biggest challenge facing businesses is the struggle to constrain the operational space of attackers, which is threatening the underlying foundation required for digital transformation.

Other key findings include cybercriminals expanding their focus to server-side attacks, ever-changing and evolving methods of attack and the increasing use of encryption to mask activity. What’s more, thus far in 2016 ransomware has become the most profitable malware type in history. Perhaps one of the more concerning revelations is that visibility across the network and endpoints remains a challenge, as on average, organisations take up to 200 days to identify new threats.

Webroot Director of Threat Research, David Kennerly says ransomware is undoubtedly one of the biggest threats facing organisations today. He quotes statistics from the Webroot 2016 Threat Brief, which reveal that 97 percent of malware is morphs to become unique to a specific endpoint.

“Part of the problem is the rate at which polymorphic malware is developing, resulting in thousands of new strands each month,” Kennerly says.” Unfortunately, protecting against ransomware is currently a question of economics. It is often cheaper to pay the ransom to get the data back than the costs of regular back-ups and running the technologies to defend.”

So what can we do?

Recently, the NASCAR team Circle Sport-Leavine Family Racing(CSLFR) were the victims of a ransomware attack and they ended up paying (via Bitcoin) to get their data back.

Kennerly says no matter how tempting it may be, companies should never concede to the criminal and pay the ransom, as it not only fuels the ransomware economy but there is also no guarantee that the data will be returned.

“There have been instances of malware claiming to encrypt the data, but instead it has been deleted so paying the ransom still did not result in the data’s return. Ransomware is a very real threat and organisations and individuals need to ensure that firstly, adequate defences are in place, and secondly, valuable data is backed up so systems can be restored if need be,” Kennerly concludes.

Kiwis losing $24.7mil to scam calls every year
The losses are almost five times higher compared to the same period last year, from reported losses alone.
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
"Is this for real?" The reality of fraud against New Zealanders
Is this for real? More often than not these days it can be hard to tell, and it’s okay to be a bit suspicious, especially when it comes to fraud.
Why you should leverage a next-gen firewall platform
Through full lifecycle-based threat detection and prevention, organisations are able to manage the entire threat lifecycle without adding additional solutions.
The quid pro quo in the IoT age
Consumer consciousness around data privacy, security and stewardship has increased tenfold in recent years, forcing businesses to make customer privacy a business imperative.
Kordia launches Women in Tech scholarship at the University of Waikato
The scholarship is established to acknowledge and support up-and-coming female talent and future technology leaders.