Twice Victimized? Don’t Let This Ransom Victim be You!

Have you ever paid a ransom, twice, to the same bad guys?  UK’s National Cyber Security Centre (NCSC) detailed a case about one unknown firm who just paid millions (a little under £6.5million) for the encryption code that allowed them to retrieve their data, then got visited two weeks later by the same cybercriminals who helped themselves to a second portion at the table. Yes, this breached firm had no option but to pay the ransom a second time!

The lesson is that if you fall victim to a ransomware attack, find out how it was possible for cyber-criminals to embed themselves on the network, undetected, so that you can add proper security controls before you introduce your data back into production.

How could this even happen, you ask? Quite simply: Without proper tools, logging capabilities, and analysts experienced with investigating environments and APTs (advanced persistent threats), then little to no post-incident activity can be accomplished – necessary to knowing what access a firm should deny the hungry criminals seeking to breach their perimeters.

A qualified cybersecurity partner would have immediately determined cause of breach and sealed off access to protect against future attacks.

Cybersecurity experts across the board rely on tools like NIST’s SP-800-61, Incident Management Life Cycle, with its critical four-part process: Preparation; Detection & Analysis; Containment, Eradication, Recovery; and Post-Incident Activity. This process ensures tragic, twice-ransomed mishaps are avoided.

Calling all CEOs: Enough of saying “We do this in house….We’re all good … We have cybersecurity covered.”

How many more breach incidents will it take before you watch even the greats of cybersecurity firms looking over their shoulders and keeping themselves and their staff on point 24/7? The difference between a breach attempt at one of “the greats” is that their cybersecurity partner catches the attempt before it actually does damage and wreaks havoc on their systems. Without engaging your own cyber-security partner you miss out on leveraging the skills in Artificial Intelligence’s behavioral detection to your firm’s advantage. And honestly, you don’t stand a chance of “no breach” when cybercriminals target your firm and are determined to get in.

Don’t be that CEO….that CTO… who refuses to rally easy-to-access and fairly priced expertise that will save you headaches and potentially hundreds of thousands of dollars. You needn’t go it alone. In fact, in this day and age it isn’t smart to do so. Collaboration is imminent and well respected within cyber-security circles, all working to one end:

Stop cybercriminals at the perimeter and never get run over!

==> Get a FREE Cyber Health Check

Data-Guard 365 is a MSSP firm headquartered in Indianapolis, Indiana, with offices in Chicago, Atlanta, and other strategic locations across the globe. The company is a one-of-a-kind business partner whose people, processes, and technology provide armored cybersecurity for a price point that pays for itself. www.Data-Guard365.com / (317) 967-6767 / info@data-guard365.com