Report: 90% of companies affected by ransomware in 2022

Were you unable to attend Transform 2022? Check out all of the summit sessions in our on-demand library now! Watch here.

An annual SpyCloud survey found that 90% of organizations were impacted by ransomware over the past twelve months, an alarming increase from last year’s 72.5%.

To compile the 2022 Ransomware Defense Report, SpyCloud asked over 300 individuals in active IT security roles at U.S., UK and Canadian organizations with at least 500 employees to evaluate the threat of ransomware, as well as their companies’ cyber readiness, over the past 12 months.

Their insights show that while companies have activated to strengthen their cybersecurity postures across the board in light of the increased threat of ransomware, criminals are becoming more sophisticated, leveraging gaps in security to perpetrate attacks.

Despite increased investment in cybersecurity, over the past year, the relentless tide of ransomware continued to disrupt operations and put organizations’ data at risk. Moreover, organizations were more likely than last year to be impacted more than once: 50% were hit at least twice, 20.3% were hit between 6 and 10 times and 7.4% were attacked more than 10 times.


MetaBeat 2022

MetaBeat will bring together thought leaders to give guidance on how metaverse technology will transform the way all industries communicate and do business on October 4 in San Francisco, CA.

Register Here

The growing prevalence of repeat attacks is an indication that popular methods such as data backups –– which respondents saw as their most important ransomware countermeasure –– still leave sensitive data exposed. Once an attack has occurred, retrieving lost data does not prevent attackers from sharing it on the dark web, allowing criminals to use it for future nefarious activities, including their next attack.

Malware hits security defense gaps

Malware preparedness also represents a major gap in organizations’ defenses. IT security teams face a near-total lack of visibility into malware infections on unmanaged devices used to access work applications or accounts. According to 87% of respondents, reports of credential-stealing malware such as RedLine Stealer have elevated the focus on unmanaged personal devices as a potential entry point for ransomware.

Their concerns are well-founded: Malware infections are more common than companies may realize. Through analysis of botnet logs recaptured this year alone, SpyCloud researchers identified over 6 million malware-infected devices with application credentials siphoned.

While the report indicated organizations are making strides toward better prevention –– those that implemented or plan to implement multifactor authentication nearly doubled to 96% from 56% last year –– the report’s findings show that closing key gaps around exposed data and malware is critical to making a dent in the fight against ransomware.

Read the full report from SpyCloud.

Originally appeared on: TheSpuzz