Two thousand and eighteen is the year of ransomware. According to the 2018 Verizon Data Breach Investigations Report, while malware and hacking breaches have been on a slight decline for the last year, the use of ransomware has skyrocketed. Criminals attracted to ease of use, minimal risk, and high hit rate associated with ransomware have flocked to the strategy in droves, costing small businesses across America millions of dollars in the process. About $301 million to be exact, as stated in Datto’s 2017 State of the Channel Ransomware Report.
But, of course, businesses aren’t the only organizations that have been hit by the ransomware epidemic. Just ask the city of Atlanta, whose systems were frozen by ransomware in late March of this year, locked behind a $50,000 Bitcoin deposit. One interesting component of the case is that, regardless of whether or not the city was actually prepared to pay the ransom, it seems they didn’t even have the opportunity. Hackers took down the payment portal not long after the breach, leaving Atlanta officials swinging in the wind. As officials scrambled to restore basic functions of city programs, it only took two weeks to amass a staggering $2.6 million bill — a figure that officials expect to climb another $9.5 million over the coming year.
Even if you’re not one of the 10 biggest cities in the United States, cybercriminals cast a wide net — most of the time, it’s more profitable to target dozens of virtually unprotected, smaller organizations than to draw the ire of big fish like the US government. If you were a small-time criminal, would you rather break into 10 high-end, unlocked homes abandoned by vacationing tenants, or pull a single, endlessly complicated Ocean’s Eleven-style heist? Attackers generally follow the path of least resistance. Your business is just that.
So, what do you do in response? Toughen up your barriers, tighten up your processes and enlist your entire staff in the battle against ransomware.
Ransomware attackers don’t steal your data, they just lock you out of it. So the best way to make your organization totally ransomware-proof is to make sure a ransomware breach won’t actually affect your day-to-day operations. That means regular backups, and lots of them, scattered throughout your primary network in places that won’t be compromised by the spreading malware. When ransomware hits, all you need to do is hunt down the source, delete it, and roll the entire system back.
The vast majority of ransomware attacks happen through phishing e-mails, which means employees are usually the ones to open the gates that let the malware in. Luckily, it’s easy to train your team to stay vigilant for the signs of digital scams and put procedures in place that will prevent them from ever clicking that shady link.
Of course, the best way to keep ransomware at bay is by putting a skilled team on the case. Unlike an isolated IT employee, a managed services provider has the combined know-how, time, and resources to proactively manage your network security, implementing systems that will make it all but impossible for ransomware to penetrate your data. To truly seal up all the holes in your digital security, it takes a complex, comprehensive strategy. Bring in the experts and ensure your business doesn’t become another statistic in the age of digital crime.