Despite having suffered a ransomware attack over the past weekend or holiday, many organizations are still unprepared for what lies ahead, with contingencies and a lack of software solutions leading to long response and recovery times.
A report by CyberSun in a survey of more than 1,200 security professionals worldwide found that nearly half do not have the right tools to handle such an incident.
Symptomically enough, 49% of the respondents also said that the ransomware attack was successful because they did not have the right equipment. These would include a next-generation antivirus solution deployed at the time of the attack, traditional signature-based antivirus, or endpoint detection and response solutions (EDR).
Drunk Texting Ransomware Operator
The paper titled “Organization at Risk: Ransomware Attackers Don’t Take Vacations” further claims how nearly a quarter (24%) still lack proper contingencies to ensure a quick response during off-days or hours.
As a result, these businesses are very slow to respond. Nearly two-thirds (60%) took too long to assess the scope of the attack, while half (50%) said they needed more time to respond to the attack. A third took longer to fully recover.
Employees are then forced to miss holiday and weekend activities, resulting in burnout at times. In many cases (70%), employees were intoxicated while responding to an attack over the weekend.
As the holiday season approaches, ransomware operators will be as active as ever. Cyberian warns that businesses in the retail and transportation industries are high-value targets, given the potential for disruption and loss of revenue.
Despite being aware of the target painted on their backs, organizations in these industries are not preparing themselves for the holidays. Nearly a quarter (24%) of organizations in both industries that had already suffered a ransomware attack said they still did not have a specific contingency plan in place.
“Ransomware attackers don’t take time off for the holidays. The most disruptive ransomware attacks in 2021 have occurred over the weekend and during major holidays when attackers realize they have an advantage over targeted organizations,” said Lior Div, chief executive officer and co-founder of CyberScene.
“This research substantiates the fact that organizations are not adequately prepared and that additional steps need to be taken to ensure that they have the right people, processes and technologies in place to effectively respond to ransomware attacks. and protect our valuable assets.”