Global State of Ransomware Report 2020
Author : Matt Yarranton
27 November 2020

Datto have released their annual Global State of the Channel Ransomware Report for 2020. They have interviewed more than 1000 managed service providers (MSPs) around the world. The report gives details on the state of ransomware from the perspective of the professionals responsible for managing small and medium-sized business (SMB) IT systems.  Here are some of the key findings:

COVID-19 and remote working

The number of ransomware attacks has increased during COVID-19, largely precipitated by people working from home, using personal computers that are not secure and are possibly being shared by an entire family who do not follow the best security practices.

COVID-19 impact on ransomware according to MSPs

Business owners do not see the threats

An interesting statistic in the report is that, while 84% of MSPs believe that SMBs should be very concerned about ransomware, only 30% of SMBs are concerned. The SMB figure was even lower in Europe, at 19%. This indicates a problem regarding awareness within SMBs of the threats. That said, 50% of MSPs report that their clients’ security budget had increased in 2020, most likely because of the COVID-19 pandemic and the increase in home working.

84% of MSPs vs 30% of SMBs said they were concerned about ransomware

Ransomware is becoming more evasive

MSPs report that ransomware is becoming better at evading detection, with 50% of MSPs stating that it got through all security defences. This is largely because cybercriminals use a slightly modified version of their ransomware for each attack so that it avoids detection. Using a multi-layered approach to cybersecurity is more likely to prevent an attack than just using a single solution.
SMBs must assume that it is a case of, not if, but when you will be attacked, and prepare for that eventuality.
Having a defensive in-depth approach, encompassing cybersecurity tools, business continuity and disaster recovery (BCDR) solutions, incident response planning and user awareness training, will give you the best chance of avoiding an attack, and recovering from an attack when it happens.

MSPs report that many of the security solutions used could be bypassed by ransomware

MSPs statistics on which cybersecurity solutions were bypassed by ransomware

Phishing is the number one cause of ransomware attacks

54% of MSPs reported that phishing emails were the leading cause of ransomware attacks amongst their clients. Using security solutions to detect and block phishing emails is important, but not as important as educating your users on how to recognise and report suspected phishing emails.

Top causes of ransomware

Quick recovery minimises impact

Ransomware attacks can have a massive impact on a business’ ability to operate. The biggest consequence of a ransomware attack is the loss of productivity caused by downtime. Having the ability to quickly recover from an attack is key to minimising the impact.  Clients with BCDR solutions and plans are far less likely to experience significant downtime. 91% of MSPs said clients with BCDR were able to recover from a ransomware attack very quickly.
The reputational damage caused by an attack cannot be understated. If your customers think you are not taking care of their data, are they likely to go elsewhere?

Top consequences of ransomware

 

Conclusion

Ransomware is not going away. In fact, each year the numbers increase. This is because it is very profitable for cybercriminals. While they are able to extort money from their victims, they have a business model that is profitable, and they will continue.
While paying the ransom should never be completely discounted in your incident response plan, it is a risky approach as there is no guarantee that the cybercriminals can be trusted to complete their side of the bargain.  Plus, paying cybercriminals only perpetuates the problem.
The best way to protect your business from ransomware is to have a layered approach which comprises cybersecurity awareness training, incident response, cybersecurity tools, and a BCDR solution.
If you are interested in understanding how we can help you to protect your business from ransomware please click this link to arrange a call. We’d be delighted to discuss this with you.

 

 

More Content

Why is my computer so slow!?

“Why is my computer so slow?” is a question heard time and time again and is one of the most common computer complaints. There are a variety of reasons that your computer can appear to be running slowly. I say ‘appear’ as it may not actually be your computer that is causing the problem. Read on to find out possible reasons for this problem.

Donated Laptops for Lockdown Learning

A Digital Divide It is a shocking fact that 9% of children in the UK, between 1.1 and 1.8 million, do not have a computer, laptop or mobile device in their home, according to research carried out by Ofcom. This pandemic is shining a stark light on the gap in provision...

Blisstech Solutions sponsors KEMP’s Virtual Santa Fun Run

In 2020 everything has been different, and the traditional KEMP Hospice Santa Fun Run is no exception.  In a year where so many charity and participation events have been cancelled, it is great to see that this iconic local event is going ahead, albeit in a very...

Why now is a great time to start your own business

"I can accept failure, but I can't accept not trying." - Michael Jordan We are living in unprecedented times.  People are being prevented from leaving their homes and the average worker has been sent to work from home, put on reduced hours, or worse.  It is...

Why the Cloud is not backup

Cloud computing has revolutionised the way businesses work.  Companies that utilise the cloud will have coped the best with COVID-19 imposed restrictions.  Whether forced to by circumstance or not, businesses are moving from the traditional server in the office to...

Homeworking is bad for IT security

A new homeworking security report from CyberArk has surveyed 3000 remote office workers and IT professionals. It finds that increased homeworking, resulting from the 2020 pandemic, could be bad news for a company’s IT security posture. It has uncovered several...

What is a managed service?

If computers are an essential part of your business you will probably have someone looking after them for you, but what type of service are you getting from them?  Have you heard the expression "Managed Service" or "Break/Fix"? You may have heard these expressions and...

Office 365 and Windows RDS: Maximum Remote Working Flexibility

Windows Remote Desktop Services (RDS) has been around for years. I was using it over 20 years ago and was a fan.  It was an excellent solution for flexible working over slow connections, which is all we had back then!  However, back then, you needed something else to...

Microsoft Remove Delay Windows 10 Updates in version 2004

We recently wrote an article on how to delay Windows 10 updates so that you can wait until issues are resolved before you install new updates.  However, in the Windows 10 2004 update, Microsoft has removed the ability to delay Feature Updates for up to 365 days in the...

How to spot a scam

Would you know how to recognise a scam? In the 21st century, you are highly unlikely to encounter a con artist in the street as they hide behind phones, text messages and emails.  But the motivations behind 21st-century fraudsters have not changed; they want to make...
Share This