DATA DOCTORS

Here are the realities of paying ransomware thieves

Mar 26, 2022, 7:15 AM

(Pexels Photo)...

(Pexels Photo)

(Pexels Photo)

Q: A business associate’s organization was hit with ransomware; can they trust that they will get their data back if they pay the ransom?

A: The financial incentives for ransomware attacks are estimated to top $1 billion this year, which means that this lucrative cyber-crime is going to continue to grow.

2021 saw a 62% increase over 2020 in reported ransomware incidents according to the Cybersecurity & Infrastructure Security Agency and every expectation is that it will continue to grow in 2022.

To Pay or Not To Pay

Generally speaking, the question of whether you should pay the ransom or not has more to do with whether you have a secured backup to restore from or not.

Getting rid of the malware that allowed the attack to happen is pretty straightforward, so as long as you have a current backup that was not included in the attack, there’s no need to pay the ransom.

If you don’t have a backup to restore your data from, you’ll have to decide between spending your time or your money to get back up and running.

Ransomware thieves are hoping that the amount of time it would take to recreate the data is much more expensive than just paying the ransom.

The detrimental impact of paying the ransom is that it encourages the underworld to figure out how to expand their attacks because it pays well.

No Guarantees

In many cases, an organization may have no choice but to pay the ransom, but that doesn’t guarantee that every file will be returned intact.

Statistically speaking, about one-third of ransomware victims pay the ransom, but the likelihood of complete recovery isn’t always the result.

When you pay the ransom, the thieves provide you with a ‘key’ to unlock the encrypted files, but there are complications beyond the key such as data corruption or unsophisticated encryption methods that can cause data to be unrecoverable.

I advise clients that are forced to pay the ransom not to expect a full recovery as there are many instances where only a partial recovery may be possible.

A recent survey published in Canada suggested that full recovery of your data was close to a 60/40 proposition. Of the respondents that paid the ransom, only 42% said they got full access to their data. 49% percent said they got a partial recovery with 7% saying they paid the ransom but got nothing at all.

Double Extortion

Even if your organization has done a good job to ensure that it can recover from a traditional ransomware attack, there is another level of extortion that’s on the rise.

We’re seeing an increase in attacks that include the step of copying your data to a remote location as well.

This allows them to threaten to go public with sensitive information about your business and/or your employees in case you aren’t willing to pay to unlock your files.

Phishing scams targeting employees are still the most common method for starting a ransomware attack, so focusing on educating employees and securing your data with encryption or other forms of data protection are essential to avoid paying either form of ransom.

Comments

Comment guidelines: No name-calling, personal attacks, profanity, or insults. Please keep the conversation civil and help us moderate comments by reporting abuse.
comments powered by Disqus

Data Doctors

(Pexels File Photo)...

Data Doctors

Beware of ‘quishing’ emails! These scary scams can hurt your computer

Ever heard of quishing? This scary scam is a type of phishing email. Click on it at your own peril. It can infect your computer with malware.

5 days ago

digital will...

Ken Colburn, Data Doctors

Here’s how to create a ‘digital will’ so family can access important online assets

Creating a "digital will" will help your family access important online assets if you pass away.

12 days ago

Multiple desktop feature tips for Arizonans in 2024...

Data Doctors

How to use the multiple desktop feature on Windows

Here are a few tips and tricks that Arizona technology lovers should know if they want to take advantage of the multiple desktop feature on Arizona.

19 days ago

Google Chrome may be bogging down your computer browser....

Ken Colburn, Data Doctors

Is Google Chrome slowing down your computer?

Google Chrome may be bogging down your computer browser.

26 days ago

(Pixabay photo)...

Ken Colburn, Data Doctors

What to know about Apple intelligence

What to know about Apple intelligence and its features? This guide by Data Doctors makes its simple.

1 month ago

How to pause the problematic Windows update...

Ken Colburn, Data Doctors

How to pause the problematic Windows update

I’m seeing all kinds of problems online with the latest Windows update and worried that it will be installed automatically. What should I be doing?

2 months ago

Sponsored Articles

...

Sanderson Ford

Sanderson Ford’s Operation Santa Claus: Spreading holiday cheer through pickleball

Phoenix, AZ – Sanderson Ford, a staple in the Arizona community, is once again gearing up for its annual Operation Santa Claus charity drive.

...

Day & Night Air Conditioning, Heating and Plumbing

Why a Heating Tune-Up is Essential Before Winter

PHOENIX, AZ — With cooler weather on the horizon, making sure your heating system is prepped and ready can make all the difference in staying comfortable this winter.

...

Morris Hall

West Hunsaker, through Morris Hall, supports Make-A-Wish Foundation in Arizona

KTAR’s Community Spotlight this month focuses on Morris Hall and its commitment to supporting the Make-A-Wish Foundation in Arizona.

Here are the realities of paying ransomware thieves