Despite the ability to properly protect against ransomware attacks, the latest data from AppRiver shows SMBs simply aren’t prepared to respond, and will, instead, pay up.
Ransomware is increasing at an alarming rate and from the looks of it, SMBs simply aren’t prepared. According to AppRiver’s 2019 Cyberthreat Index for Business Survey Report, three-quarters of SMBs believe a successful attack would be harmful to their business with only 36% believing they can actually survive a successful attack without sustaining short- and long-term business losses.
And rather than preparing with a strong defense and response plan, the data shows the cybercriminals have the upper hand:
- 55% of all SMBs state they are willing to pay a ransom to recover encrypted data or to prevent it from being shared
- Of larger SMB’s with 150-250 employees, 74% are willing to pay the ransom with 39% of larger SMBs saying they “definitely would pay the ransom at almost any price”
Of the 45% of SMBs stating they are unwilling to pay ransoms, legal, healthcare, and nonprofit industries topped the list.
The AppRiver data shows that, despite the availability of solutions to protect, detect, and remediate ransomware attacks, SMBs simply aren’t ready. Instead, SMBs should arm themselves with a simple, yet effective, strategy:
- Backup – having backed up copies of any impacted data nullifies the need to pay the ransom.
- Protect – Put email and web scanning in place, along with endpoint protection to keep malware from getting to the user.
- Train – Educate users with Security Awareness Training to ensure that, should the user interact with malicious content in an email or on the web, they are more likely to spot it and not be the next victim of a ransomware attack.