Cloudian released a report showing that ransomware attacks were difficult to prevent even when the victims were well prepared.
The 2021 Ransomware Victims Report showed that nearly half of all organizations victimized by ransomware had perimeter defenses at the time of the attack. Additionally, the report found that phishing remains a popular initial access method for penetrating secure corporate networks.
While most organizations chose to pay the ransom, the cost of an attack still exceeded the ransom payment, and that cyber insurance coverage was inadequate. Consequently, the Cloudian advised organizations to implement systems capable of recovering quickly after a successful attack without yielding to extortion demands.
The survey polled 200 IT decision-makers working for organizations that experienced a ransomware attack between 2019-2021.
Ransomware attacks circumvent strong perimeter defense
Most organizations breached had various measures in place to defend against ransomware attacks, according to the Cloudian report.
More than half of the victims (53%) had encryption for data at rest, while 44% had encryption for data in transit. And nearly half (49%) of the victims had perimeter defenses such as end-point security protections, including anti-viruses, while 43% implemented internal controls.