cl-nz logo
Story image

Ransomware the most common cyber threat to SMBs - report

Ransomware remains the most common cyber threat to small and medium businesses, according to a new report from Datto.

Datto, a global provider of cloud-based software and technology solutions purpose-built for delivery by managed service providers, unveiled its fifth annual Global State of the Channel Ransomware Report. More than 1,000 MSPs weighed in on the impact COVID-19 has had on the security posture of small and medium businesses (SMBs), along with other notable trends driving ransomware breaches.

The survey found that 60% of managed service providers report that their SMB clients have been hit as of Q3 2020. 

The impact of such attacks keeps growing: the average cost of downtime is now 94% greater than in 2019, and nearly six times higher than it was in 2018 increasing from $46,800 to $274,200 over the past two years, according to Dattos research. 

Phishing, poor user practices, and lack of end user security training continue to be the main causes of successful ransomware attacks.

The survey also revealed the following:

  • MSPs a target: 95% of MSPs state their own businesses are more at risk. Likely due to increasing sophistication and complexity of ransomware attacks, almost half (46%) of MSPs now partner with specialised Managed Security Service Providers (MSSPs) for IT security assistance to protect both their clients and their own businesses. 
  • SMBs spend more on security: 50% of MSPs said their clients had increased their budgets for IT security in 2020, perhaps indicating awareness of the ransomware threat is growing.
  • Average cost of downtime continues to overshadow actual ransom amount: Downtime costs related to ransomware are now nearly 50X greater than the ransom requested. 
  • Business continuity and disaster recovery (BCDR) remains the number one solution for combating ransomware, with 91% of MSPs reporting that clients with BCDR solutions in place are less likely to experience significant downtime during an attack. Employee training and endpoint detection and response platforms ranked second and third in tackling ransomware. 

 
The impact of COVID-19 on ransomware and the cost of security disruptions

During the pandemic, the move to remote working and the accelerated adoption of cloud applications have increased security risks for businesses. More than half (59%) of MSPs said remote work due to COVID-19 resulted in increased ransomware attacks, and 52% of MSPs reported that shifting client workloads to the cloud increased security vulnerabilities. 

As a result, SMBs need to take precautions to avoid the costly disruptions that occur in the aftermath of an attack. The survey also determined that healthcare was the most vulnerable industry during the pandemic (59%).

The survey revealed the top three ways ransomware is attacking entities: 

  • Phishing emails. 54% of MSPs report these as the most successful ransomware attack vector. The social engineering tactics used to deceive victims have become very sophisticated, making it vital for SMBs to offer extensive and consistent end user security education that goes beyond the basics of identifying phishing attacks. 
  • Software-as-a-Service (SaaS) applications. Nearly one in four MSPs reported ransomware attacks on clients SaaS applications, with Microsoft being hit the hardest at 64%. These attacks mean that SMBs must consider the vulnerability of their cloud applications when planning their IT security measures and budgets. 
  • Windows endpoint systems applications. These are the most targeted by hackers, with 91% of ransomware attacks targeting Windows PCs this year.  

"The COVID-19 pandemic has accelerated the need for stronger security measures as remote working and cloud applications increase in prevalence," says Ryan Weeks, chief information security officer at Datto. 

"Reducing the risk of cyberattacks requires a multi-layered approach rather than a single product awareness, education, expertise, and purpose-built solutions all play a key role. 

"The survey highlights how MSPs are taking the extra step to partner with MSSPs that can offer more security-focused experience, along with a more widespread use of security measures like SSO and 2FA these are critical strategies businesses and municipalities need to adopt to protect themselves from cyber threats now and in the future."

 

Story image
Quantum extends Veeam partnership in a bid to protect against ransomware
“Quantum continues to expand its partnership with us and we are pleased to add ActiveScale object storage to a select group of S3 targets that can provide robust ransomware protection for our joint customers."More
Story image
Gartner reveals latest forecast for government IT spending
Worldwide government IT spending is forecast to total $483 billion in 2021, an increase of 5.1% from 2020, according to the latest forecast by Gartner.More
Story image
CrowdStrike to acquire Humio for $400 million
The move expands CrowdStrike’s Extended Detection and Response (XDR) capabilities through Humio’s data ingestion and analytics expertise, which CrowdStrike says will deliver improved insights and better protection.More
Story image
Lexmark brings new certification program to A/NZ partners
The global imaging solutions leader says the program is designed to enhance channel partners’ service capabilities, and to support their sales and marketing efforts.More
Story image
Apple and Xiaomi only vendors to see smartphone growth in 2020 — Gartner
Apple’s growth was largely due to the success of the iPhone 12, which helped the company surpass Samsung to regain the status of number one global smartphone vendor for Q4 2020.More
Story image
Patrick Quesnel, a Microsoft NZ mainstay, is appointed as Azure infrastructure lead for APAC
Quesnel comes into the new role off the back of over three years as AI business group lead for Microsoft Azure New Zealand, where he was ‘instrumental’ in building Microsoft NZ’s business. More