APAC organisations forking out millions due to ransomware

/in


Ransomware has had a widespread impact on organisations in the Asia Pacific region in numerous ways, including both financially and legally.

This is according to Claroty’s report titled ‘Global State of Industrial Cybersecurity 2021: Resilience Amid Disruption’, which revealed the impact of ransomware on organisations during 2021.

An independent survey of 1,100 full-time IT and OT security professionals was carried out in the United States, Europe and Asia Pacific, to determine how organisations dealt with ransomware challenges in 2021 and their levels of resiliency and priorities moving forward.

The report found that 80% of organisations in APAC were affected by ransomware attacks and just over half (51%) paid the ransom.

Overall, 71% of organisations in APAC paid ransom fees of US$100K-1M, and 13% paid US$1-5M. Moreover, 52% of APAC organisations reported a downtime event would cost them up to US$0.5M per hour in lost revenue, with 36% reporting costs would be even higher per hour at US$0.5-5M.

Globally, 9% of organisations said costs would exceed US$5M per hour. Only 5% of APAC companies would face such high costs.

The survey also explored the legal requirement to report ransomware payments, with only 45% in APAC supporting a legal requirement to report ransomware payments, so long as this came with a requirement to also report payments to regulators or other authorities.

On the contrary, 23% in APAC supported ransomware payments being legally required, but with no obligation to report payment.

However, the report notes: “As long as the financial model continues to favour paying the ransom, these threats will continue. The only way to mitigate the risk is to understand how to make hyperconnectivity more secure. Gaps in processes and technology, some that have existed for years, must be addressed.”

On this front, the survey revealed an almost universally increased investment in cybersecurity, and a strengthening of cybersecurity measures over the past two years driven by the pandemic and by high-profile, and highly damaging, ransomware attacks in 2021: on Colonial Pipeline and global meat processor JBS, as well as the SolarWinds supply chain attack.

A…

Source…