Seriously, it isn’t the ransom that’s the problem. It’s the 404 error page, the sudden halt to revenue coming in online, the damaged brand rep – all that and a heap of extra IT costs as you scour IT freelancer forums. Here’s some insights;
Insurance broker Aon has reported that from April to mid-May 2021 insurance premiums have leapt 27% from the same time in 2020 reflecting the rise in cyber-attacks and ransomware strikes over the same time period. According to ProLion, a best-in-class active ransomware and data protection solution provider for ONTAP centralised file services, this is just the tip of the iceberg when it comes to the increase in costs businesses face if they are hit by a ransomware demand.
Steve Arlin, VP Sales, UK, Americas & APAC, ProLion, stated: “Ransomware became more sophisticated over the past year and businesses and economies locked down. Now we are seeing attacks at an almost industrial scale with the rise of ransomware-as-a-service. Attacks are going through the roof and more and more high-profile businesses are being hit. We are now regularly hearing of businesses which are critical to humanity such as the oil and gas provider Colonial and the world’s biggest beef producer, JBS.
“This is becoming a serious issue impacting consumers, producers and governments alike and even the insurance sector is not immune. Axa, one of Europe’s largest insurers, was itself hit in May 2021.”
A recent survey by the US industry body whose members find insurance cover on behalf of companies, The Council of Insurance Agents and Brokers, found that over 70% of its members reported a decrease in underwriter capacity for taking on cyber risk.
“There is no doubt that the insurance sector is applying some considerable pressure on corporates to get their cyber security act in order. Nothing gets the attention of the CFO more than a spike in premiums and this must surely help drive cultural change within corporates,” continued Arlin.
“With ransomware you hear a lot when it comes to reputational risk, lost productivity and ultimately the cost of paying the ransom. What is now clear from these figures is that ransomware is impacting the day-to-day operational costs of doing business in ways no one even a year ago could have predicted.”
“Since there’s no way to completely protect your organisation against a ransomware attack, businesses should adopt a ‘defence-in-depth’ approach. This means using layers of defence with several mitigations at each layer. You’ll have more opportunities to detect it, and then stop it before it causes real harm.
“Our solution is CryptoSpike which delivers agentless ransomware protection for Central File Services whether in the local data centre, NAS, or in the Cloud enabling us to deal with the cause before it becomes a mess,” concluded Arlin. “Ultimately no business wants to face increased costs but when the cost of insurance goes through the roof, or when, as it is now being reported, primary insurance simply dries up, then it is time to focus on prevention and not cure.”