1 in 2 businesses are targeted by Ransomware
The special report 'State of Ransomware 2024' on the current state of ransomware from Sophos shows that 2024 continues to be a 'disastrous' year for businesses facing relentless ransomware attacks.
Security firm Sophos said cyber attacks targeting SME organizations and companies continue to increase. Ransomware is considered a huge threat to businesses of all sizes. They are still happening silently, more and more frequently and more seriously, with ransoms reaching tens of millions of USD, or equivalent damage due to operational disruption. In addition, targeted attacks (APT - Advanced Persistent Threat) are still the main threats to all organizations and businesses.
Ransomware is a term used to describe a type of malware that encrypts a victim's data, holds it hostage, and then demands ransom from the victim, a business, in cryptocurrency like Bitcoin, to 'rescue' the data.
More than half of medium and large-sized businesses from 14 countries from Sophos's report said they were attacked by Ransomware in 2024. Of which, the vulnerabilities that Ransomware exploits most strongly include software or system security vulnerabilities (32%), attacks on weaknesses (29%), malicious emails (23%) and targeted fraud (11%)... On average, 35% of businesses take a week to restore suspended operations after a Ransomware attack, 34% take a month.
Chart comparing the rate of ransomware attacks on industrial - commercial sectors, management organizations - government agencies. The rate targeting medical organizations and hospitals is still the highest, accounting for 68%.
Lack of unified solution is a big reason
According to Sophos, the reason why enterprise systems are being penetrated is because of the overlap of software, especially in the booming period of AI (artificial intelligence), the development of new technology applied to the operations of all organizations and businesses, at the same time increasing the cyber attack surface. Too many security holes (Vulnerabilities) from applications and operating systems are announced regularly, while IT management staff has not kept up with them, creating conditions for cybercriminals to carry out attacks.
Ransomware is a big concern for many businesses.
Sophos representative said that due to the complexity of IT systems, most organizations and businesses are facing many problems with Security and Information Security . The three main points include: there are many 'blind spots' when deploying security solutions; Lack of monitoring tools to help administrators correlate the entire system; Lack of highly specialized human resources to operate and handle information security incidents. Accordingly, Sophos believes that small and medium-sized businesses without a professional team can use professional solutions to overcome these weaknesses.
Sophos offers the right solution Sophos EDR and XDR (rapid detection and response) with the main advantages: Helps detect 'hidden', unnoticed attacks early; Reliable reports on the security situation at any time; Helps respond quickly and provide the most optimal incident handling; Operators understand better what the attack has been and how to prevent it. Thanks to that, businesses use it as if they had "another security expert to support 24/7".
According to experts from Sophos, a strong workstation protection solution EPP (Endpoint Protection Platform) is not enough to prevent increasingly sophisticated malware attacks. That is why advanced technologies are applied to help EPP detect and respond to such incidents effectively, which is EDR (Endpoint Detection & Response). XDR is an extension of EDR. Sophos XDR can help detect and respond to all incidents from workstations, servers, firewalls, mobile devices, Cloud, ...
Source: https://thanhnien.vn/chan-ma-doc-tong-tien-ransomware-doanh-nghiep-viet-con-lo-la-185241127105754442.htm
Comment (0)