Is it worth paying the ransom in response to a ransomware attack? The short answer is no, according to the Ransomware: The True Cost to Business Study 2022 by cybersecurity firm Cybereason.

The majority of organisations in Singapore that paid the first ransom demand were hit again in less than a month (88%), with nearly two-thirds (62%) stating that threat actors demanded a higher ransom the second time.

https://s3.ap-southeast-1.amazonaws.com/www.theedgesingapore.com/public/usr/4722yd/ce45e7-Cybereason-Ransomware-attacks-time-elapsed.jpg

Forty-five percent of those who opted to pay a ransom demand in order to regain access to their encrypted systems also had some or all of their data corrupted during the recovery process.

See also: <a class='gtm_see_also_1_inread' style='text-decoration: underline;' href='/digitaledge/news/tech-news-less-5-minutes--august-2022?utm_source=website&utm_medium=article&utm_campaign=ONPAGESEO'>Tech news in less than 5 minutes – August 2022</a>

“When ransomware gangs attack a second, third or fourth time in a matter of weeks, it can bring an organisation to its collective knees. Deploying effective anti-ransomware solutions is easier said than done, and the hackers know it,” says Eric Nagel, general manager for APAC at Cybereason.

He adds: “After being hit the first time by a ransomware attack, organisations need time to assess their security posture, determine what are the right tools to deploy, and then find the budget to pay for it. The ransomware gangs know this, and it is the biggest reason they strike again quickly.”

The study also found that 63% of Singapore respondents believe ransomware gangs got into their network via one of their suppliers or business partners.

More importantly, over 90% admitted that ransomware gangs were in their network up to six months before they discovered them. This points to the double extortion model where attackers first steal sensitive data before threatening to make it public if the ransom demand is not paid.

See also: <a class='gtm_see_also_2_inread' style='text-decoration: underline;' href='/digitaledge/news/google-delays-phasing-out-ad-cookies-chrome-until-2024?utm_source=website&utm_medium=article&utm_campaign=ONPAGESEO'>Google delays phasing out ad cookies on Chrome until 2024</a>

Apart from business disruptions, ransomware attacks have also led to C-level resignations (40%) and staff layoffs (20%).

These findings underscore why it does not pay to pay ransomware attackers, and that organisations should instead focus on detection and prevention strategies to end ransomware attacks at the earliest stages before critical systems and data are put in jeopardy.

It doesn't pay to pay a ransom: Cybereason study

Frasers Property sells 286 units in 9MFY2022, readies former Bedok Point for launch 

LMIRT's DPU stabilisies in 2Q but NAV declines as gearing inches higher

APAC Realty clocks 1HFY2022 earnings of $16.6 million, plans 3.5 cents interim dividend

Plugging the cybersecurity talent gap in Singapore

Racing towards the future of healthcare 

Driving into a smart mobility future

It doesn't pay to pay a ransom: Cybereason study

Related Stories

Highlights

Keppel Infrastructure Trust and other Keppel units to acquire South Korean waste management firm for $666 mil

Related Stories

Think tech globalisation is risky? Countries like Singapore think differently

Foolproof system, foolish human

Bolstering cybersecurity calls for an ecosystem effort: Cisco