Security News > 2021 > April > Protecting the human attack surface from the next ransomware attack
In a survey of 582 information security professionals, 50% say they do not believe their organization is prepared to repel a ransomware attack.
In order to protect organizations from the next big ransomware attack, security teams must invest in protecting the human attack surface and understanding the enterprise technology habits within its organizations that make it most vulnerable.
We know that hacker teams leveraging ransomware are highly aware of the way that human behavior can make an attack more successful and profitable.
A high proportion of ransom triggers - the final stage of a ransomware attack where the data on infected systems is rendered inaccessible through cryptography - is launched on the weekend, when the organization's staff are least able to respond.
In such a scenario, the human attack surface extends to employees who aren't necessarily in the same state of mind as they would be at the office, where focus can be more intense and the atmosphere more professional.
In a world where the attack surface is now extended to thousands of homes, businesses require better visibility, governance, and access management in order to reduce the paths through which malware can propagate to critical systems and data stores.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/8xCw_p0nV2o/
Related news
- CISA warns of Jenkins RCE bug exploited in ransomware attacks (source)
- CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks (source)
- Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds (source)
- Most ransomware attacks occur between 1 a.m. and 5 a.m. (source)
- New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data (source)
- Lateral movement: Clearest sign of unfolding ransomware attack (source)
- BlackByte Ransomware Exploits VMware ESXi Flaw in Latest Attack Wave (source)
- U.S. Agencies Warn of Iranian Hacking Group's Ongoing Ransomware Attacks (source)
- Ransomware crisis deepens as attacks and payouts rise (source)
- Ransomware attacks escalate as critical sectors struggle to keep up (source)