Employee Training Continues To Be The Best Medicine For Ransomware Exposure Prevention

A new report released by cybersecurity firm, Positive Technologies, highlights the remarkable escalation in ransomware attacks in the second quarter of 2021.

In fact, 69 percent of all malware attacks involved ransomware, which represents a 30 percent increase from the same quarter last year. The cybercriminal's biggest targets were governments, healthcare facilities, and industrial operations.                           

The report also identified a few novel techniques used by cybercriminals, including a new malware loader, Tomiris, and remote administration tool (RAT) called B-JDUN.

Two high-profile ransomware attacks in early May, against Colonial Pipeline and Washington D.C.'s police department, have brought increased attention and efforts to disrupt attacks from law enforcement and federal investigators. This may decrease the deluge of attacks for a time, but experts expect cybercriminals will eventually renew their activity with original ideas for infiltration.

If victimized by a cyberattack, organizations should conduct a comprehensive investigation to make sure any "back doors" left by the hackers are closed. Lance Whitney "Ransomware now accounts for 69% of all attacks that use malware" www.techrepublic.com (Sep. 23, 2021).

 

 

Commentary

A survey of more than 1,000 managed service providers by cybersecurity firm, Datto, identified the leading causes of ransomware infection as phishing emails, poor user practices, and inadequate training on cyber threats.

All three of these center around the human element of cybersecurity.

Employers cannot ignore the significant role its employees play in preventing ransomware and should invest in ongoing employee cybersecurity training. Employees who are well-versed in network best practices will be able to stop most of your ransomware threats.

Effective cybersecurity employee training should include instruction on password security techniques and how to recognize and appropriately respond to phishing emails. It is also important to follow up security training by conducting practice attacks that allow your IT staff to assess employee knowledge, and identify areas that need improvement.

Finally, your opinion is important to us. Please complete the opinion survey:

News

New Fax Number for Best Practice Help Line

The fax line for Best Practice Help Line consultation requests is now 918-712-5965.

Why A Balanced Approach Of Response And Preparation Is Needed For Data Security

A recent study found that IT personnel recognize how proactive risk assessment steps can minimize damage from a systems breach. However, do they have the time? Learn more.

Checking For Skimmers: A Day-To-Day Security Task

Performing visual and physical security checks can help you spot credit card skimmers. Learn more about this identity theft risk.

Online Account Takeover Fraud Spiking: Are Unique And Strong Passwords The Answer?

Account takeover fraud is on the rise. Read ways to protect yourself from this form of identity theft.