No sign of a reduction in ransomware attacks against UK organizations

Published: Tuesday, 09 July 2019 07:18

Databarracks has shared new data from its soon-to-be-released Data Health Check survey which highlights that ransomware remains a serious issue for UK organizations. From a sample of 400 IT decision-makers, the data shows that 28 percent of organizations in the UK have been affected by ransomware in the past year. In 2016 ransomware attacks impacted 16 percent of UK organizations. This rose to 29 percent in 2017 and has remained close to this figure since.

Peter Groucutt, managing director of Databarracks commented:

“Having a cyber incident response plan – including recovery from backup – is critical. A ransomware attack will ultimately leave a business with two decisions: recover your information from a previous backup or pay the ransom. But even if a ransom is paid, it’s not certain your data will be returned. The only way to be fully protected is to have historic backup copies of your data.

“When recovering from ransomware, your aims are to minimise both data loss and IT downtime. Outright prevention is not viable, so organizations should focus on organizing their defensive and preventative strategies to reduce the impact of an attack.

“The Incident response team or crisis management team must have the authority to make large-scale, operational decisions quickly. This includes being able to take systems offline to prevent the spread of infection. Once isolated and contained, you must find when the ransomware installation occurred to be able to restore clean data from before the infection occurred. When the most recent, clean, data is identified you can begin a typical recovery, restoring data and testing before bringing systems back online again.”

“There is evidence widely available to show ransomware attacks are not disappearing, so it’s important organizations invest in their defensive and preventative strategies,” concluded Groucutt. “Having historic backup copies of your data available means if you are faced with a ransom, you’re not left at the mercy of the attacker. You can retrieve your backed-up data, minimising the impact to your business.”