A survey of top IT security professionals has revealed that 40% believe paying out as part of a ransomware demand should be made illegal.
The majority of respondents believed that businesses should never pay an attacker to decrypt their data, although more than 40% said they would either consider it or absolutely pay it as it's the easiest method of remediation.
The study from AT&T Cybersecurity shed light on the perceptions businesses have of ransomware and their current level of preparedness against the threat that's still one of the most prolific out there.
While most businesses (69%) were confident that they had the cyber security resilience and necessary backups in place to prevent a ransomware attack from crippling operations, 30% of leaders said they weren't sure.
"It's clear from this research that organisations are still struggling when it comes to ransomware. Many do not know the best practices when it comes to ransomware, or worse, do not feel confident to handle attacks efficiently," said Rick Langston, lead product manager from AT&T Cybersecurity.
"Companies not only have to mitigate ransomware by having a solid security programme that uses protection tools to close down all possible attack vectors, but also have back-ups that are separate from the network in case the worst happens," he added.
Regardless of how prolific ransomware has become in the past few years - UK businesses saw a 195% increase in ransomware attacks this year - it's still eclipsed by other threats in terms of what's worrying security professionals.
Of the five most troubling threats faced by businesses, ransomware was at the bottom of the list. Nation-state attackers, insider threats, phishing and DDoS attacks were all more troubling to security professionals than the attack vector plaguing UK businesses.
It's not just the UK that's seen a proliferation of ransomware in the past year; myriad US towns and cities have succumbed to ransomware attacks in recent months - most of which seem to be small towns and government departments.
Most recently, 22 Texan towns and their government departments were hit by a coordinated ransomware attack, with one mayor confirming that the attacker used 'island hopping' to bring down his city's IT systems.
Two Floridan towns also made headlines after they were infected in the same week. Together they paid over $1 million in ransom demands to clear their IT systems of the infection - a practice which is highly disadvised in the industry.
Although paying a ransom can be the fastest way to regain control of systems, it can invite further attacks as it signals the victim is willing to pay.
There's also no guarantee that the attacker will rid the victim of the infection even after paying up either. During the NotPetya ransomware attacks in early 2018, researchers discovered that not only were the attacker's digital wallets misconfigured, but their email account had been shutdown, meaning that it was unlikely that any payments would reach their destination.
-
Gender diversity improvements could be the key to tackling the UK's AI skills shortageNews Encouraging more women to pursue tech careers could plug huge gaps in the AI workforce
-
Researchers claim Salt Typhoon masterminds learned their trade at Cisco Network AcademyNews The Salt Typhoon hacker group has targeted telecoms operators and US National Guard networks in recent years
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
