Weekend ransomware attacks might end up being more expensive
Fixing them takes longer, and since time is money...
Ransomware attacks that take place over the weekend, or during holidays, are usually more damaging to businesses than weekday ones, according to cybersecurity researchers Cybereason.
Surveying more than 1,200 cybersecurity professionals for the “Organizations at risk 2022: Ransomware attackers don’t take holidays” report, the company found that most respondents claimed weekend ransomware attacks result in higher costs and greater revenue losses.
In fact, more than a third of respondents who suffered such an incident over a weekend or holiday period said they lost more money, up by almost a fifth (19%) from last year. The travel and transportation industry, as well as the education sector, appeared to be the most affected.
Staffing issues
The reason is quite obvious : fewer staff means a slower response time, and a slower response time means threat actors have longer to wreak havoc.
Almost half (44%) of the respondents said their staff drops by as much as 70% on weekends and holidays. A fifth (21%) operate a skeleton crew, as roughly one tenth of their full team signs in for work. Furthermore, just 7% of the respondents said that between 80-100% of their cybersecurity team work during these periods.
The main challenge for businesses - even for large ones with 2,000+ employees - is to assemble their incident response team. Compared to weekday attacks, a third (34%) naturally said this took longer than usual, while 36% said it took longer to stop them and ultimately recover. 37% claimed that assessing the scope of the attack took too long as well.
Cybereason concludes that ransomware continues to be a major threat for business, accounting for almost half (49%) of all incidents SOC teams have to deal with.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
- Here are the best firewalls right now
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.