We’re working in a world where technology, workplaces, and behaviours are rapidly evolving. And while this has greatly improved many aspects of business, there are also certain unwanted consequences. One major example is increased exposure to ransomware. Traditional perimeter-based defences are struggling to keep up with modern-day practices. There are more openings than ever for attackers to breach your network, and they’ve got SMBs firmly in their sights.
What is a ransomware attack?
When an attacker successfully breaches an SMB’s defences, the likelihood of an attack has increased to 715% over the last year. Cybercriminals infiltrate your systems and use ransomware to encrypt your files so you can no longer access them. They then hold this data ransom, demanding payment for its release. This is somewhat of a ‘sweet spot’ for criminals, as a small or mid-sized business owner might see it as easier to just pay, rather than involve authorities or risk customers and competitors learning of the issue.
The average days of downtime due to ransomware outbreaks in Q2 2020 alone was 16 days. This could end up costing you a lot of money. The most damaging, disruptive and by far the costliest cyber threat that can hit you is ransomware, and it is imperative to stop any outbreak as quickly as possible. If you don’t, the only two options are to pay the ransom or go through the expensive process of restoring and rebuilding your IT environment.
Why are SMB’s being targeted?
Ransomware attackers see small and mid-sized businesses as an ideal target because SMBs have, for a long time, believed their current endpoint and perimeter security to be strong enough. However, today it’s more likely they’ll have less sophisticated defences compared to larger corporations, while still having the capital to be worth the risk.
And it’s unlikely that an SMB will have a dedicated cybersecurity policy in place, or specialist IT or Data Protection experts on their staff. While due to the relatively small financial amounts at stake, institutions like the police probably won’t get involved.
Should you just pay up?
It’s a big dilemma to be faced with. Pay, and you might avoid disruption to your services and productivity, as well as any legal difficulties if the attacks gained access to your customers’ personal data. But this will encourage and fund future attacks which ultimately entices the attackers to keep attacking. And even when you have paid, there is no guarantee the attackers will even return your data. Continuing to pay only perpetuates the problem for everyone.
The trend over the past few years suggests that refusal is the way forward. Last year, 97% of US and 78% of German businesses refused to pay, while 75% of Canadian and 58% of UK Companies coughed up – it’s the American/German stance that’s leading to fewer ransomware attacks. Here are a few FAQs about ransomware that you may find handy.
Look to your defences
Where once IT managers only had to concern themselves with securing centralized locations where servers, staff and hardware were all situated under one roof, they must now consider how to proactively protect your people across multiple locations and devices with improved cyber resilience across the business. The dilemma can be avoided altogether if you look for a proactive solution and the first step is to evaluate your defences using an IT health check assessment.
Most SMB’s are currently protected by a traditional wall of defences: often a combination of firewall, email scanners, web filtering solutions and endpoint security agents. But in modern business, this is no longer enough to keep your business safe as these attacks can penetrate traditional defences by encrypting around 6,000 – 8,000 files per minute. Learn about various tactics you can use to prevent ransomware as a small business.
Additionally, employees often access the business network from multiple locations on multiple devices – all of which are outside the wall. Educate your people on what to look out for – such as suspicious phishing emails and malware – and on what to do if a cyber-attack does take place. It is then a great idea to follow up these sessions with regular reminders to keep your people on their guard.
Ransomware attacks are successfully targeting small to medium-sized businesses – how do you protect your data? Click To Tweet
Ricoh’s Cyber Security Practice
Working with a collaborative partner is a fantastic way to fortify your business against the risk of cyber-attacks like ransomware. By taking advantage of their experience and expertise you can build cyber resilience and ensure business continuity. Ricoh’s Cyber Security Practice provides a revolutionary “Last Line of Defence” to ransomware. It delivers a 24/7 automated containment solution focused on stopping a ransomware outbreak as soon as encryption starts.
If you are motivated by this and other ransomware statistics presented here, IT leaders have shifted most of their attention to cyber security. Watch our webinar, “Addressing the Threat of Ransomware”, to learn about some of the most effective tools to counter ransomware attacks.