January 21, 2021
While ransomware attacks remain one of the main challenges faced by companies in recent years, incurring significant monetary and security damages, cybercriminals have decided to take these attacks to the next level, by using them to extract sensitive data, such as IP and research from their targets.
A recent article published by help net security claims that stealing valuable and sensitive information from the target companies has become a much more attractive goal to cybercriminals than the payday of “regular” ransomware attacks, however high that may be. The reason for this is the fact that the protection of the infiltrated data is potentially worth much more to these companies than what they would normally pay when under a ransomware attack.
As security teams in most companies under ransomware attacks focus the majority of their efforts on restoring regular business activity after facing a breach, cybercriminals have identified a clear opening to stealing sensitive corporate data using tailored and somewhat surgical methods to extract exactly what they came for.
How can you defend yourself from ransomware attacks?
- Implementation of in-depth defense tactics, such as employee training, password enhancement, patch management, and multi-factor authentication, effective against phishing and malware campaigns.
- Limiting access to files and folders based on roles and seniority.
- Be aware of any changes occurring to your data, such as large-scale downloads, or attempts to access restricted data.
- Maintain back-up abilities to support your organization in quickly bouncing back after an attack.
- Forming a potential network of detection capabilities serving multiple organizations.
Check out our article about the key insights for the 2020 attacks and recommendations to prepare for 2021.
Follow Us on Facebook for the latest news and insights on cybersecurity.
Stay Safe with TrustNet!