Why is Ransomware so Effective?

Most people do not think about security in general. We ignore risks when they cost money and time due to our inherent impulse for this phenomena

 

I have discussed this before  in the last post of 2016:

How bad is it? Will Cybersecurity get worse?

The problem is one of business decisions which means a little bit of known knowledge and a little bit of psychology, it does not have to do with technical capabilities.

What is the worst problem that can happen to you in your business?

Lose all data? I.e. without a backup!

That is what can happen with a phenomena called “Ransomware”.

What do you think the 7 common causes that companies get hacked are? (From DarkReading article)

  1. Failure to check code before deployed
  2. Leaving source code exposed
  3. failure to change default passwords
  4. Poor patching process
  5. Human error in social engineering , phishing
  6. Poor exfiltration control
  7. Failure to recognize infiltration

 

All of the 7 common causes are mistakes or failures in operating Information technology in one way or another are directly related to human failures in security procedures

Remember from Bruce Schneier’s Psychology of security 70 % of us do not believe that it is wise to spend money on risk avoidance,  there are other things that we as humans naturally tend to do.

 

So the bottom line? Ransomware is not going away. Criminals will make more money and make better Ransomware.

I am sure you reading does not have problems, and is paying just enough attention to deny the Criminal any actual pound of flesh (data to exploit).

 

The key to improve your OODA Loop  (Observe, Orient, Decide, and Act ) is to reduce the time delay and to actually apply patches or reconfigure devices properly.

The only way to ensure that this has been done by your team is to test them with an outside testing person/agency.

There are many stories of Ransomware failures, and here is another one(01/20/17):  Fox2Now  (Channel 2 – Saint Louis) Saint Louis Library system got 1000 systems infected with Ransomware.  Because once 1 system is infected it could affect other systems on the network.

In this story there will be no payment, as the systems will just have to be reinitialized (reinstalled from scratch).

But something is wrong there so it will possibly happen again until the process and procedure failure is rectified.

Contact US to help you fix your processes to prevent ransomware.