Security Market Segment LS
Thursday, 15 October 2020 10:40

Ransomware attacks tend to affect IT staff morale: survey

Ransomware attacks tend to affect IT staff morale: survey Pixabay

IT professionals at companies that have been hit by ransomware are nearly thrice as likely (17%) to feel they are "significantly behind" in understanding online threats in comparison to staff at organisations which have not suffered such attacks (6%), a global survey claims.

The survey, Cybersecurity: The Human Challenge, conducted by security shop Sophos, canvassed the views of 5000 IT managers from 26 countries (break-up in graphic below), and also found that in Australia nearly two-thirds of firms outsourced their security, either in part or whole, compared to just 39% in other countries.

Top of the outsourcing list were China (76%), the UAE (74%), and Malaysia and Singapore (both 73%) where around three quarters of respondents already include outsourcing in their IT security delivery. At the other end of the scale, in

In other Australian-specific findings, Sophos said 40% of Australian organisations were prioritising the improvement of efficiency and scalability in their security solutions — the global figure was 39% — and only 17% said finding skilled staff was the single biggest challenge compared to the 27% who cited this issue globally.

More than a third (35%) of ransomware victims said recruiting and retaining skilled professionals was their single biggest challenge, compared with just 19% of those who hadn't been hit.

Ransomware victims were found to be spending proportionally less time on threat prevention (42.6%) and more time on response (27%) compared to those who haven't been hit (49% and 22% respectively), diverting resources towards dealing with incidents rather than stopping them in the first place.

survey breakup

"The difference in resource priorities could indicate that ransomware victims have more incidents to deal with overall," said Sophos principal research scientist Chester Wisniewski.

"However, it could equally indicate that they are more alert to the complex, multi-stage nature of advanced attacks and therefore put greater resource into detecting and responding to the tell-tale signs that an attack is imminent."

The company said that, from analysing a recent attack by the Windows Ryuk ransomware, it had found that such attacks could often progressing at great pace. In this particular case, "within 3½ hours of an employee opening a malicious phishing email attachment, the attackers were already actively conducting network reconnaissance. Within 24 hours, the attackers had access to a domain controller and were preparing to launch Ryuk".

Said Wisniewski: "Our investigation of [this] attack highlights what defenders are up against. IT security teams need to be on full alert 24 hours a day, seven days a week and have a full grasp of the latest threat intelligence on attacker tools and behaviours.

"The survey findings illustrate clearly the impact of these near-impossible demands. Among other things, those hit by ransomware were found to have severely undermined confidence in their own cyber-threat awareness.

"However, their ransomware experiences also appear to have given them a greater appreciation of the importance of skilled cyber security professionals, as well as a sense of urgency about introducing human-led threat hunting to better understand and identify the latest attacker behaviour.

"Whatever the reasons, it is clear that when it comes to security, an organisation is never the same again after being hit by ransomware."

Subscribe to ITWIRE UPDATE Newsletter here

Now’s the Time for 400G Migration

The optical fibre community is anxiously awaiting the benefits that 400G capacity per wavelength will bring to existing and future fibre optic networks.

Nearly every business wants to leverage the latest in digital offerings to remain competitive in their respective markets and to provide support for fast and ever-increasing demands for data capacity. 400G is the answer.

Initial challenges are associated with supporting such project and upgrades to fulfil the promise of higher-capacity transport.

The foundation of optical networking infrastructure includes coherent optical transceivers and digital signal processing (DSP), mux/demux, ROADM, and optical amplifiers, all of which must be able to support 400G capacity.

With today’s proprietary power-hungry and high cost transceivers and DSP, how is migration to 400G networks going to be a viable option?

PacketLight's next-generation standardised solutions may be the answer. Click below to read the full article.


WEBINAR PROMOTION ON ITWIRE: It's all about webinars

These days our customers Advertising & Marketing campaigns are mainly focussed on webinars.

If you wish to promote a Webinar we recommend at least a 2 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial.

This coupled with the new capabilities 5G brings opens up huge opportunities for both network operators and enterprise organisations.

We have a Webinar Business Booster Pack and other supportive programs.

We look forward to discussing your campaign goals with you.


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Share News tips for the iTWire Journalists? Your tip will be anonymous




Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News