Average Ransom Payment Has Increased by 104% in Q4 2019

Cyware | January 28, 2020

Ransomware families that belong to Ryuk and Sodinokibi are responsible for the huge rise in the ransom payments.In Q4 of 2019, 98% of companies had received a working decryptor tool for the ransom paid.With the increase in ransomware attacks, the average ransom payment has risen to 104% in the fourth quarter of 2019. A report from Coveware reveals that the ransomware attackers had collected an average of around $84,000 from victim organizations in the Q4 of 2019 when compared to $41,198 in Q3 of 2019. Ransomware families that belong to Ryuk and Sodinokibi are responsible for the huge rise in the ransom payments. These ransomware operators have moved into the large enterprise space and are focusing their attacks on large companies where they can attempt to extort the organization for a seven-figure payout.

Spotlight

The Ponemon Institute's findings from our Third Annual Study: Is Your Company Ready for a Big Data Breach sponsored by Experian® Data Breach Resolution, illustrate that many companies still lack confidence in their ability to manage these issues and execute their data breach response plan. We surveyed 604 executives and staff employees who work primarily in privacy and compliance in the United States.

Spotlight

The Ponemon Institute's findings from our Third Annual Study: Is Your Company Ready for a Big Data Breach sponsored by Experian® Data Breach Resolution, illustrate that many companies still lack confidence in their ability to manage these issues and execute their data breach response plan. We surveyed 604 executives and staff employees who work primarily in privacy and compliance in the United States.

Related News

ENTERPRISE SECURITY

Datto Acquires Threat Detection and Response Company Infocyte

Datto | January 21, 2022

The leading global provider of cloud-based software and security solutions purpose-built for Managed Service Providers (MSPs), Datto Holding Corp. announced that it had acquired threat detection and response company Infocyte, enhancing Datto's security capabilities to protect, detect, and respond to cyber threats found on endpoints and in cloud environments. Infocyte is a leader in Endpoint Detection and Response (EDR) technologies and Managed Detection and Response (MDR) services, with headquarters in Austin, Texas. Infocyte's patented technologies continuously collect and correlate data from endpoints to identify potential attacks. It was founded by threat intelligence experts from prominent cybersecurity organizations within the US military. A team of specialized security analysts in a Security Operations Center (SOC) uses this technology to respond to heightened cyber threats in real-time. “Datto has always focused on enabling its MSP partners to secure the digital assets – both applications and data – of their Small and Medium Business (SMB) clients. The addition of the Infocyte team and technologies augments our capabilities within the critical Protect, Detect, and Respond stages outlined in the NIST organizational security framework,Infocyte’s offerings are complementary to Datto RMM Ransomware Detection and SaaS Defense application security products in those same NIST stages.” Tim Weller, CEO of Datto Weller continued, “In 2022, we will continue to leverage the power of our Datto RMM platform by fully integrating Infocyte’s patented technology, further securing endpoints and fortifying this key first line of defense for MSPs. Today, we welcome the Infocyte team, who will join us in developing our rapidly expanding set of MSP-delivered security offerings. MSPs are squarely in the security business, so Datto continues to make security a top investment focus.” “We look forward to joining Datto and to further securing the SMBs and other clients served by its vast network of MSPs around the world,” said Curtis Hutcheson, CEO of Infocyte. “Securing endpoints from advanced threats continues to be a top challenge for SMBs. With Datto’s partner community and growing security portfolio, we will be able to dramatically expand our reach to millions of endpoints under management, enabling Datto’s partners to provide their SMB customers with leading detection and response technologies.“

Read More

DATA SECURITY

NETSCOUT Omnis Cyber Intelligence Integrates with AWS Security Hub

NETSCOUT | November 11, 2021

NETSCOUT SYSTEMS, INC. a leading provider of cybersecurity, service assurance, and business analytics solutions, today announced that Amazon Web Services, Inc. (AWS) customers will now have added visibility and security when migrating workloads to AWS using NETSCOUT's Omnis® Cyber Intelligence (OCI) integration with AWS Security Hub. NETSCOUT OCI is the industry's fastest and most scalable network security software solution, built on the foundation of the industry's most prominent network monitoring and packet recording and analysis technology. It uniquely detects and investigates suspicious activities in real-time and retrospectively, identifies threats early in the attack life cycle to prevent infections from spreading, stops future attacks, and identifies compromised assets. As a cloud security posture management service, AWS Security Hub performs automated, continuous security best practice checks against AWS resources, aggregates alerts, and enables automated remediation. The integration between NETSCOUT OCI and AWS Security Hub enhances the corporate security posture by extending the breadth and depth of cyberthreat visibility and intelligence. The integration is seamless since NETSCOUT OCI automatically formats violations in the Amazon Security Findings Format (ASFF) with built-in intelligence to suppress duplicate alerts and group them as needed. NETSCOUT OCI, through its integration with AWS Security Hub, helps detect, investigate, and respond to potentially malicious activity exposing risks that exist in hybrid cloud interdependencies. "As organizations migrate workloads to the cloud, their infrastructure becomes increasingly complex, making end-through-end visibility a necessity to uncover increased attack surfaces and combat threat exposure,As an AWS Validated Technology and Public Sector Partner with Network and Migration competencies, we've been in lock-step development with AWS. We're excited that customers can realize the benefits of NETSCOUT OCI, which is now fully integrated onto AWS Security Hub." Russ Currie, vice president, enterprise strategy, NETSCOUT About NETSCOUT NETSCOUT SYSTEMS, INC. helps assure digital business services against security, availability, and performance disruptions. Our market and technology leadership stems from combining our patented smart data technology with smart analytics. We provide real-time, pervasive visibility and insights customers need to accelerate and secure their digital transformation. Omnis Cyber Intelligence delivers the fastest and most scalable network security solution available on the market. NETSCOUT nGenius service assurance solutions provide real-time, contextual analysis of service, network, and application performance. And Arbor® Smart DDoS Protection by NETSCOUT products help protect against attacks that threaten availability and advanced threats that infiltrate networks to steal critical business assets. To learn more about improving service, network, and application performance in physical or virtual data centers or in the cloud, and how NETSCOUT's security and performance solutions can help you move forward with confidence.

Read More

New research shows that companies with good cybersecurity beat the market by up to 7%

prnewswire | October 06, 2020

BitSight, the Standard in Security Ratings, and Solactive, a German index engineering firm, today released new research demonstrating that a company's cybersecurity performance is an indicator of business performance. Analysis shows that indices composed of well-performing BitSight-rated companies outperform their respective benchmarks by 1% to 2% annually. For certain sectors, such as U.S. Technology, well-rated companies outperform the benchmark by 7% per year. The findings are an endorsement for today's introduction of the Solactive BitSight Cyber Risk Index, a financial index that will enable investors to invest in companies who are top cybersecurity performers as measured by BitSight.

Read More