Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Ransomware Recovery Costs Have Doubled for State and Local Governments

    Ransomware Extortion TacticsThirty-four percent of state and local government entities were hit by ransomware in 2024, a new report from Sophos has found.

    While this is a decrease compared to the attack rate in 2023, the mean cost of recovery for these entities has more than doubled to $2.83 million.

    Seventy-two percent of ransom demands made to state and local government organizations in 2024 were for $1 million or more, with 37% of demands for $5 million or more.

    The report found that most ransomware attacks against government entities in 2024 began with compromised credentials, which are usually obtained through phishing, credential stuffing, or data breaches.

    “Compromised credentials were the most common method of entry (49%), followed by exploited vulnerabilities (24%),” the researchers write. “For comparison, exploited vulnerabilities were the most common method of compromise in 2023. The study reveals that the whole government sector is particularly susceptible to attacks that start with abuse of compromised credentials, with 47% of affected central/federal government organizations having experienced attacks starting in this way.”

    Employee awareness training provides an essential layer of defense against ransomware attacks. Sophos concludes, “The best ransomware attack is the one that didn’t happen because the adversaries couldn’t get into your organization. Almost a quarter (24%) of respondents say that attacks start with the exploitation of unpatched vulnerabilities in state and local government, so it’s important to take control of your attack surface and deploy risk-based prioritization of patching.

    The use of MFA to limit credential abuse should also be a priority for every organization. Ongoing user training on how to detect phishing and malicious emails remains essential.”

    KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.

    Sophos has the story.

     

    Return To KnowBe4 Security Blog

    Get Your Ransomware Hostage Rescue Manual

    Ransomware Hostage Rescue Manual Cover 2022This 26-page manual is packed with actionable info that you need to prevent infections, and what to do when you are hit with ransomware. You also get a Ransomware Attack Response Checklist and Prevention Checklist. You will learn more about:

    1. What is Ransomware?
    2. Am I Infected?
    3. I’m Infected, Now What?
    4. Protecting Yourself in the Future
    5. Resources

    Don’t be taken hostage by ransomware. Download your rescue manual now! 

    Get Your Manual

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://info.knowbe4.com/ransomware-hostage-rescue-manual-0

    Topics: Phishing, Ransomware, Security Culture, MFA

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews