In 2022, the National Cyber Security Centre (NCSC) described ransomware, as ‘the most acute threat that businesses and organisations in the UK face’.
Ransomware is a malicious programme written to encrypt data. If you become the victim of a ransomware attack you will be unable to read or access encrypted data without a decryption key. Typically, cyber criminals will offer the decryption key for a price, demanding payment in cryptocurrency such as bitcoin. The impact of ransomware attacks are well reported, and cause significant business interruption.
According to statistics from the NCSC annual review, the organisation coordinated the national response to 18 ransomware attacks last year, including a private supplier to the NHS, while also listing hundreds of reported ransomware attacks across a variety of business regardless of sector, size or location. As we move into 2023 there are concerns that there will be a continued growth in ransomware attacks.
To avoid falling victim to ransomware attacks, ensure that you have appropriate prevention in place, following best cyber security practices. This includes keeping software and devices up to date, including data back-ups, which be can readily restored in the event of an incident, meaning you are not left in a situation even needing to consider paying for the decryption key.
Ransomware attacks can be untargeted, as evidenced by the NCSC review. This means businesses are not protected by their size or sector: everyone is a target. Therefore, all organisations need to consider how to defend against such threats.
To find out more, sign up for our free core membership for the latest information on the digital landscape and upcoming threats, plus access to a wealth of handy cyber security resources.
For further guidance on how to prevent potential cyber breaches, please contact [email protected].
The NEBRC is a non-profit organisation that seeks to educate, inform, and support businesses across the UK on how to remain safe against online threat actors through strong cyber security practices.