SentinelOne Reveals that Almost Half of Global Businesses Suffered a Ransomware Attack in Last Year – Global
Organizations hit by ransomware experience an average of six attacks per year, as faith in traditional security solutions plummet
PALO ALTO, Calif.—November 18, 2016—SentinelOne, the company transforming endpoint security by delivering real-time protection powered by machine learning and dynamic behavior analysis, today announced the findings of a global survey on the business impact of ransomware, conducted by research firm Vanson Bourne. The survey of businesses in the U.K., U.S., France and Germany revealed an immediate need for better solutions. In the last 12 months, 48 percent of organizations across the globe have fallen victim to a ransomware campaign, with 80 percent indicating that they’ve suffered from three or more attacks.
According to the survey, in response to ransomware attacks, 67 percent of businesses globally have increased IT security spending, and 52 percent reported that they are changing their security strategies to focus on mitigation. Fifty-four percent also agreed that their organizations have lost faith in traditional cybersecurity, such as antivirus.
“Ransomware has become one of the most successful forms of cybercrime in 2016 and is on the top of every security professional’s list of most prolific threats,” said Jeremiah Grossman, Chief of Security Strategy at SentinelOne. “It’s not surprising to see high levels of apathy towards traditional antivirus software, and we don’t expect the ransomware epidemic to slow down anytime soon. The situation is likely to get far worse, as some of the ill-gotten gains will be invested into research and development designed to improve encryption strength and utilize new delivery methods, as witnessed with Locky.”
Global Snapshot: Hacker Motives and Business Responses
According to the survey, 81 percent of respondents globally that suffered ransomware attacks reported that attackers were able to gain access to their organization’s network through phishing emails or social media. Half reported that the attacker gained access through a drive-by-download caused by clicking on a compromised website, while 40 percent stated that the attack came through an infection via botnet.
Employee information (42 percent), financial data (41 percent) and customer information (40 percent) were the types of data most often affected by these attacks. Respondents identified the most likely motives of their attackers as financial gain (54 percent), operational disruption (47 percent) and cyber espionage (42 percent).
“These results further shed light on ransomware, where now, any and all types of sensitive data are targeted and can lead successful extortion,” continued Grossman.
Compelling regional findings include:
K.: Only 13 percent of respondents in the U.K. notified their cyber insurance providers upon suffering a ransomware attack, while 50 percent notified law enforcement and 69 percent informed their CEO and board.
- S.: Despite the prevalence of attacks, companies in the U.S. are still willing to assume responsibility for breaches—only 42 percent would demand answers from their IT security vendors.
- Germany: Attacks targeting German organizations for ransom most often encrypted employee and customer information, at 57 percent and 51 percent, respectively.
- France: Nearly one-third (31 percent) of organizations in France experienced 3-4 ransomware attacks in the past 12 months.
“As they have for decades, cyber-criminals continue to illegally access sensitive data by simply tricking users. This problem has not been addressed nor can it be solved by adding more firewalls and end-user trainings,” concluded Grossman. “To make a positive impact, both customers and vendors must make real changes to the defense tools they use and design. It’s clear that there’s an immediate need for a new generation of security technologies that can discover, stop and adapt to the new breed of threats and hacker strategies.”
Vanson Bourne surveyed 500 cybersecurity decision makers at organizations with more than 1000 employees globally in October 2016: 200 in the U.S.; 100 in the U.K.; 100 in France; and 100 in Germany.
SentinelOne is shaping the future of endpoint security with an integrated platform that unifies the detection, prevention and remediation of threats initiated by nation states, terrorists, and organized crime. SentinelOne’s unique approach is based on deep inspection of all system processes combined with innovative machine learning to quickly isolate malicious behaviors, protecting devices against advanced, targeted threats in real time. SentinelOne was formed by an elite team of cyber security and defense experts from IBM, Intel, Check Point Software Technologies, McAfee, Palo Alto Networks and the Israel Defense Forces. To learn more visit sentinelone.com or follow us at @SentinelSec
YouTube: SentinelOne on YouTube
Kirsten Scott, Kelly Friend or Barry Salmon
+44 (0)1276 486000