Average Ransoms Triple while Ransomware Incident Response Costs Pile On

Ransomware Incident Response Costs Pile OnNew data shows it’s now clear the biggest problem with ransomware (just after taking down your operation) is all the necessary costs incurred trying to clean up the mess post-attack.

If your organization hasn’t been hit with ransomware, consider yourself lucky. Believe me when I say it’s not something the business wants to experience. According to Palo Alto Network’s security division, Unit42, their most recent Ransomware Threat Report 2021 details that the bad guys are no longer satisfied with a spray and pray approach to infiltrating the majority of a victim network. They are instead “[taking] their time to learn the victims and their networks, following a more traditional network penetration approach.”

According to the report, the ransom demands in 2020 reached nearly $850,000 with the average ransom paid nearly tripling in 2020 to $312,000 from 2019’s average of only $115,000.

In addition, Unit42 highlighted the additional forensics costs post-attack to help victim organizations come up with a response strategy and execution plan. The average forensics costs were $40,719 for small and mid-sized businesses and $207,875 for larger enterprises. This on top of whatever ransoms were paid.

We’ve also seen the overall cost double when ransoms aren’t paid. So, there’s no real good answer here except to completely avoid becoming a victim. RDP and Phishing attacks remain the most prevalent initial attack vectors for ransomware, putting Security Awareness Training at the top of the priority list as a means of shrinking the phishing attack threat surface.

Free Ransomware Simulator Tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

KnowBe4’s "RanSim" gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 22 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

RansIm-Monitor3Here's how it works:

  • 100% harmless simulation of real ransomware and cryptomining infections
  • Does not use any of your own files
  • Tests 21 types of infection scenarios
  • Just download the install and run it 
  • Results in a few minutes!

Get RanSim!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:


Topics: Ransomware

Subscribe To Our Blog

Cybersecurity Awareness Month 2021 Free Resource Kit

Get the latest about social engineering

Subscribe to CyberheistNews