Security News > 2022 > February > Ransomware attacks, and ransom payments, are rampant among critical infrastructure organizations
80% of critical infrastructure organizations experienced a ransomware attack in the last year, with an equal number reporting that their security budgets have risen since 2020, a Claroty report reveals.
The report is based on an independent global survey of 1,100 information technology and operational technology professionals who work in critical infrastructure sectors, exploring how they have dealt with the significant challenges in 2021, their levels of resiliency, and priorities moving forward.
Of the 80% of respondents who experienced a ransomware attack, 47% reported an impact to their industrial control system environment and over 60% paid the ransom, more than half of which cost $500,000 or more.
The report also found that the combination of the ever-accelerating digital transformation and limited availability of skilled cybersecurity workers has resulted in several high-profile attacks on critical infrastructure.
Gaps in processes and technology remain: While more than 65% rate their organization's vulnerability management strategy as moderately to highly proactive, ransomware attacks are still highly successful.
"Our research shows that critical infrastructure security is at a pivotal juncture, where threats are proliferating and evolving, but there's also a growing collective interest and desire in protecting our most essential systems," said Yaniv Vardi, CEO of Claroty.
News URL
https://www.helpnetsecurity.com/2022/02/10/critical-infrastructure-ransomware/
Related news
- Critical Veeam RCE bug now used in Frag ransomware attacks (source)
- Mega US healthcare payments network restores system 9 months after ransomware attack (source)
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- Embargo ransomware escalates attacks to cloud environments (source)
- Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- Researchers Warn of Ongoing Attacks Exploiting Critical Zimbra Postjournal Flaw (source)
- CISA: Network switch RCE flaw impacts critical infrastructure (source)
- Critical Ivanti RCE flaw with public exploit now used in attacks (source)