Homepage Rubrik newsroom
Register as BUSINESS Register as PR AGENCY Register as JOURNALIST

Almost one-third of A/NZ businesses have paid off ransomware attackers

Announcement posted by Rubrik 29 Oct 2020

Research finds Banking and Government sectors among those most likely to pay hackers

Sydney, Australia – October 27, 2020 – Rubrik, the Cloud Data Management company, today revealed almost one-in-three (29 per cent) Australian and New Zealand organisations who fell victim to ransomware attacks in the past two years had paid off the criminal groups responsible to regain access to their data. This insight emerged from IDC’s A/NZ Ransomware Survey, August 2020, commissioned by Rubrik.

 

This finding and others were included in an IDC InfoBrief, Building business resiliency in Australian and New Zealand using a ransomware remediation backup strategy, sponsored by RubrikThe InfoBrief is based on the A/NZ Ransomware Survey that polled technology and business leaders from more than 150 Australian and New Zealand organisations across a range of industries.  

 

The survey found 18 per cent of A/NZ businesses had fallen victim to a ransomware attack in the past 24 months. From an industry perspective, the sectors hardest hit were Banking, Financial services, and Insurance (BFSI), in which 29 per cent of respondents said they’d experienced a ransomware attack, followed by the Transport (24 per cent) and Education (22 per cent) sectors.

 

Despite bullishness on the part of respondents about their willingness to pay ransomware attackers – with only six per cent saying their organisation would consider such a course of action if their data were compromised by ransomware – the reality when confronted with an attack was very different. Of those who had fallen victim to a ransomware attack, 29 per cent of local organisations had paid off the attackers to regain access to their data. This was prevalent in the BFSI (60 per cent) and Government (33.3 per cent) sectors.

 

Jamie Humphrey, Managing Director at Rubrik A/NZ, said the results were a sobering reminder of how important data was to business operations in the digital age.

 

“Unfortunately, faced with the prospect of either halting operations until data could be restored or paying criminal organisations to have their data returned, a significant number of local businesses thought they had no choice but to pay those holding their data hostage,” he said. 

 

“Ransomware attacks are not only becoming more common, they’re becoming more sophisticated too – one third of local businesses that fell victim to ransomware reported that their back up data was compromised during the attack.

 

“This shows how important immutable backups and mature backup regimes are to business resiliency. With a comprehensive backup strategy, operations can be up and running within an hour by simply restoring from a point-in-time before an attack without having to engage the criminals. 

 

“Secure backups are the best data insurance policy businesses have against these insidious attacks,” he said. 

 

This sentiment was confirmed in the InfoBrief which found that 89 per cent of A/NZ businesses agreed that ransomware remediation was just as critical as prevention in an effective response strategy. 

 

The findings are bolstered by the Australian Cyber Security Centre’s latest Annual Cyber Threat Report, which not only found that ransomware had become one of the most significant threats facing Australian businesses and governments, but also highlighted how “recovering from ransomware is almost impossible without comprehensive backups.”

 

Other key findings from the IDC InfoBrief include:

 

  • 80 per cent of organisations in Australia and New Zealand agreed that the volume and severity of ransomware attacks had increased in the past 24 months, and 74 per cent agreed the attacks were becoming harder to detect and remediate.

 

  • The three greatest challenges local organisations anticipated when recovering from a ransomware attack were speed of recovery (29 per cent), reliability of data recovery (25 per cent), and initial detection of the attack (21 per cent).

 

  • One-third (33 per cent) of A/NZ organisations who fell victim to a ransomware attack took longer than a day to recover. Only 15 per cent were able to remediate in less than hour.

 

  • The three cyber security threats A/NZ organisations reported having increased the most in the past 24 months were phishing (51 per cent), ransomware (43 per cent), and targeted social engineering (42 per cent).  

 

About Rubrik

Rubrik, the Cloud Data Management Company, enables enterprises to maximize value from data that is increasingly fragmented across data centers and clouds. Rubrik delivers a single, policy-driven platform for data recovery, governance, compliance, and cloud mobility. For more information, visit www.rubrik.com and follow @rubrikInc on Twitter.

 

Rubrik is a registered trademark of Rubrik, Inc. Other marks may be trademarks of their respective owners.