That Pesky Ransomware is Everywhere
Ransomware. Put a plan in place today and avoid the fallout (and pricetag) tomorrow.
It used to be If, now it’s when!
Now that the dust is beginning to settle with the HSE ransomware attack (although the ramifications will be felt for quite some time), I thought it a good time to put my thoughts down to discuss, the when it happens scenario…
Imagine the scene:
You get a call from the support desk to say “We have just been hit with Ransomware”. Three things normally follow
- First words out of your mouth, sh!t
- You ask the question, how?
- Followed by, how do we fix it?
If you ask “how do we fix it”, I would suspect you don’t have an adequate plan to deal with such a scenario. Step 3 should have been a question asking, have you “implemented your Ransomware incident response plan” or “Implemented your Disaster Recovery plan”?
According to Gartner, by 2025, at least 75% of IT organisations will face one or more attacks, as free-rein researchers document a dramatic increase in ransomware attacks during 2020, pointing to sevenfold or higher rates of growth. This is not scaremongering; this is reality and a wake-up call that no business is immune or can bury their heads in the sand).
Every business no matter how big or small needs to be prepared for when they are hit by Ransomware. You need to appreciate how such an attack would impact your business. A Business Impact Assessment is key to understanding this
Every business no matter how big or small needs to be prepared for when they are hit by Ransomware. You need to understand how such an attack would impact your business. A Business Impact Assessment is key to understanding this.
“Every business no matter how big or small needs to be prepared for when they are hit by Ransomware”
Your backup and recovery platform is the critical tool when responding to a Ransomware attack. You need to understand
- If your current Backup & Recovery Platform is susceptible to a ransomware attack?
- Will your Backup & Recovery Platform be suitably equipped to respond to such an attack?
Ask yourself this additional question?
Have you internal capabilities in your team to contain and eradicate ransomware after an attack, as well as invoke your Ransomware Incident Response plan? If you do, you are doing better than most companies.
If not, you need to divide and conquer. Look for partners to assist you with
- Developing, maintaining and invoking your Ransomware Incident Response and Disaster Recovery plans.
- Security Incident Response, Containment & Eradication
If you follow these simple steps you should be better prepared to respond to Ransomware attack:
- Understand the Business Impact of a Ransomware attack
- Select partners if required to assist with Recovery Plans and Security Incident response
- Review current Backup and Recovery Platform for suitability against Ransomware attacks
- Decide on a Disaster Recovery Hosting platform and location
- Establish a Ransomware Incident Response, Disaster Recovery & Business Continuity plan
- Agree a Communication Plan
- Test Ransomware Incident Response, Disaster Recovery & Business Continuity plans
- Perform regular testing of all three plans
- Maintain Recovery Plans and update regularly
There’s no need to panic but there is a need to be proactive. Get your strategy in place today as the worst time to prepare and plan for a crisis is in the middle of one.
If you would like any assistance with any of the above steps, I would only be too happy to help. Please reach out to me on LinkedIn or through my email firstname.lastname@example.org