‍CRA Study: Security Teams More Aggressive In Fight Against Ransomware, Resist Payments

‍Organizations are stepping up their fight against ransomware and are increasingly resisting pressure to pay ransom demands.

New York, NY, November 17, 2023 – Organizations have embarked on a more aggressive effort to combat ransomware, doubling down on a variety of continuous monitoring tools, incident response playbooks, backups and user education. More of them are also taking a tougher line when it comes to meeting ransom demands, according to 218 security and IT leaders and executives, practitioners, administrators, and compliance professionals surveyed by CyberRisk Alliance last month.

“[We implement] incident response training of the key players involved, continuous monitoring of the entire network along with dedicated user security training designed to establish a viable security culture,” one respondent said of his organization’s efforts. Said another: “[We have a] multi-pronged approach with outsourced MDR being the first point of contact. Annual reviews and hardening [are] implemented.”

Among the key findings:

• Organizations resist ransom demands: One in five experienced a ransomware attack in the last 24 months, but all ransom demands were refused.
• High confidence in ransomware defenses: Recommended security measures, like conducting routine backups and aggregating log activity, have boosted confidence in ransomware defenses.
• Added support from cyber insurance and business leadership: Cyber insurance policies and support from business leadership give security teams more leverage to combat ransomware demands.
• The double-edged sword of AI: AI is poised to disrupt the ransomware scene, giving attackers more ammunition while providing organizations a path to stronger defense.‍‍

The full research report is available for download here.

About CyberRisk Alliance 

CyberRisk Alliance provides business intelligence that helps the cybersecurity ecosystem connect, share knowledge, accelerate careers, and make smarter and faster decisions. Through our trusted information brands, network of experts, and innovative events we provide cybersecurity professionals with actionable insights and act as a powerful extension of cybersecurity marketing teams. Our brands include SC Media, the Official Cybersecurity Summits, TechExpo Top Secret, InfoSec World, Identiverse, Cybersecurity Collaboration Forum, Cybersecurity Collaborative, Security Weekly, ChannelE2E, MSSP Alert, and LaunchTech Communications. Learn more at www.cyberriskalliance.com.

Sponsors:

About eSentire

eSentire, Inc., the Authority in Managed Detection and Response (MDR), protects the critical data and applications of 2000+ organizations in 80+ countries, across 35 industries from known and unknown cyber threats by providing Exposure Management, Managed Detection and Response and Incident Response services designed to build an organization’s cyber resilience & prevent business disruption. Founded in 2001, eSentire protects the world’s most targeted organizations with 65% of its global base recognized as critical infrastructure, vital to economic health and stability. By combining open XDR platform technology, 24/7 threat hunting, and proven security operations leadership, eSentire’s award-winning MDR services and team of experts help organizations anticipate, withstand and recover from cyberattacks. Learn more at www.esentire.com and follow us on LinkedIn.

About Rubrik

Rubrik is on a mission to secure the world’s data. With Zero Trust Data SecurityTM, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked. Learn more at www.rubrik.com and follow us on LinkedIn.