Connect with us

Hi, what are you looking for?

HEADLINES

Retail industry was the second most targeted industry by ransomware in 2021 – Sophos

77% of retail organizations were hit with ransomware, up from 44% in 2020—a 75% rise.

Photo by CardMapr.nl from Unsplash.com

Sophos, a global leader in next-generation cybersecurity, recently published a new sectoral survey report, The State of Ransomware in Retail 2022, which found that retail had the second highest rate of ransomware attacks last year of all sectors surveyed after the media, leisure, and entertainment industry.  Globally, 77% of retail organizations surveyed were hit—a 75% increase from 2020.  This is also 11% more than the cross-sector average attack rate of 66%.

“Retailers continue to suffer one of the highest rates of ransomware attacks of any industry. With more than three in four suffering an attack in 2021, it certainly brings a ransomware incident into the category of when, not if. In Sophos’ experience, the organizations that are successfully defending against these attacks are not just using layered defenses, they are augmenting security with humans trained to monitor for breaches and actively hunting down threats that bypass the perimeter before they can detonate into even bigger problems. This year’s survey shows that only 28% of retail organizations targeted were able to stop their data from being encrypted, suggesting that a large portion of the industry needs to improve their security posture with the right tools and appropriately trained security experts to help manage their efforts,” said Chester Wisniewski, principal research scientist, Sophos. 

As the percentage of retail organizations attacked by ransomware increased, so did the average ransom payment. In 2021, the average ransom payment was $226,044, a 53% increase when compared to 2020 ($147,811). However, this was less than one-third the cross-sector average ($812K).

“It’s likely that different threat groups are hitting different industries. Some of the low-skill ransomware groups ask for $50,000 to $200,000 in ransom payments, whereas the larger, more sophisticated attackers with increased visibility demand $1 million or more,” said Wisniewski. “With Initial Access Brokers (IABs) and Ransomware-as-a-Service (RaaS), it’s unfortunately easy for bottom-rung cybercriminals to buy network access and a ransomware kit to launch an attack without much effort. Individual retail stores and small chains are more likely to be targeted by these smaller opportunistic attackers,” said Wisniewski.

Advertisement. Scroll to continue reading.

Additional findings include:

  • While the retail sector was the second most targeted industry, the perceived increase in the volume and complexity of cyberattacks against the industry were slightly below the cross-sector average (55% and 55% respectively)
  • 92% of retail organizations hit by ransomware said the attack impacted their ability to operate and 89% said the attack caused their organization to lose business/revenue
  • In 2021, the overall cost to retail organizations to remediate a ransomware attack was $1.27M, down from $1.97M in 2020
  • When compared to 2020, the amount of data recovered after paying the ransom decreased (from 67% to 62%), as did the percentage of retail organizations that got all their data back (from 9% to 5%)

In the light of the survey findings, Sophos experts recommend the following best practices for all organizations across all sectors:

  • Install and maintain high-quality defenses across all points in the environment. Review security controls regularly and make sure they continue to meet the organization’s needs
  • Proactively hunt for threats to identify and stop adversaries before they can execute attacks – if the team lacks the time or skills to do this in-house, outsource to a Managed Detection and Response (MDR) team
  • Harden the IT environment by searching for and closing key security gaps: unpatched devices, unprotected machines and open RDP ports, for example. Extended Detection and Response (XDR) solutions are ideal for this purpose
  • Prepare for the worst, and have an updated plan in place of a worst-case incident scenario
  • Make backups, and practice restoring them to ensure minimal disruption and recovery time

To learn more about the State of Ransomware in Retail 2022, download the full report from Sophos.com.

The State of Ransomware in Retail 2022 survey polled 5,600 IT professionals in mid-sized organizations across 31 countries, including 422 respondents from the retail sector.

Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

White Papers

In 2022, Kaspersky data reveals that 29,312 unique individuals around the world were affected by stalkerware, a number which is consistent with the 32,694...

White Papers

The report highlights where businesses are doing well and where cybersecurity readiness gaps will widen if global business and security leaders don't take action.

HEADLINES

Kaspersky in 2022 has blocked a total of 822,536 financial phishing targeted at companies in Southeast Asia (SEA). From SMBs to large enterprises, financial...

HEADLINES

New adaptive active adversary protection; Linux malware protection enhancements; account health check capabilities; an integrated zero trust network access (ZTNA) agent for Windows and...

HEADLINES

The partnership will involve the integration of Mastercard’s Cyber & Intelligence (C&I) products and solutions into Vesta’s transaction guarantee platform, and will allow merchants to...

Biz Solutions

Keep reading to find out how you can leverage the latest tech to take your business to the next level.

HEADLINES

By looking at what’s driving the next innovations and the technology that supports them, the security industry is empowered to create more value for...

HEADLINES

Attempts of local malware spread through removable drives such as USB sticks dropped from 35,825,044 in 2021 to 25,060,519 in 2022. This placed the...

Advertisement