Almost half of large UK businesses have suffered a ransomware attack in the past year, with nearly one third fearing that, although the situation has been resolved, the criminals may still be lurking in their systems.
Citrix surveyed 500 UK-based IT decision makers in companies with 250 or more employees, finding that 45% had fallen victim to a successful ransomware attack.
Despite this history of victimhood, the research also found that 11% of businesses this size don't have a formal ransomware policy in place and while 50% said plans are in place to have such a policy within the next 12 months, 38% said no such plans existed.
Knowing how to deal with a ransomware infection should one occur is increasingly important, though, as this strain of malware becomes ever more popular.
"A lot of this is about isolating a potentially infected machine, deciding whether you're going to pay the ransom or not there's a business choice to be made there - and then being able to build confidence that you have actually dealt with the ransomware attack and it isn't still lurking there," Chris Mayers, chief security architect at Citrix, told IT Pro.
This third element is also a current cause for concern, with 36% of those surveyed who had fallen victim to ransomware in the past 12 months telling Citrix they doubted all traces of that attack had been fully removed.
Ultimately, said Mayers, companies need to ensure they have a ransomware plan in place, including knowing who makes the decision as to whether or not to pay, as well as being sure they can isolate the infected machine(s) and having a solid backup-and-recovery plan in place.
-
Researchers sound alarm over AI hardware vulnerabilities that expose training dataNews Hackers can abuse flaws in AI accelerators to break AI privacy – and a reliable fix could be years away
-
Are AI PCs becoming the norm?ITPro Podcast As manufacturers increasingly embed NPUs in devices, what are the benefits to businesses?
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
-
NCA confirms arrest after airport cyber disruptionNews Disruption is easing across Europe following the ransomware incident
-
Cyber professionals are losing sleep over late night attacksNews Hackers are biding their time and launching attacks when businesses can’t respond
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Enterprises need to patch these Citrix flaws nowNews Organizations should move quickly to install patches, according to Citrix
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
