IT Brief Australia - Technology news for CIOs & IT decision-makers
Australia
Guides
#
artificial intelligence
#
digital transformation
#
disaster recovery
#
internet of things
#
work from home
Search
Story image
#
Breach Prevention
#
Cybersecurity
#
Firewall
1/3 organisations hit with ransomware are repeat victims
Thu, 30th Mar 2023
FYI, this story is more than a year old
Author image
By Shannon Williams, Journalist
Follow us

A third of Australian organisations hit with ransomware in 2022 were repeat victims, a new report has revealed.

Barracuda Networks has published its 2023 Ransomware Insights report, which shows that 69% of the organisations surveyed in Australia were hit with at least one successful ransomware attack in 2022 and 33% say they were hit twice or more. 

The organisations that were hit multiple times were more likely to say they'd paid the ransom 30% of those hit two times or more paid the ransom to restore encrypted data, compared to 23% of victims of a single attack. They were also less likely to use a data backup system to help them recover.

The survey, conducted by independent research firm Vanson Bourne and commissioned by Barracuda, questioned IT professionals from frontline to the most senior roles at companies with 100 to 2,500 employees, across a range of industries in the U.S. and EMEA and APAC countries.

There were significant variations in the industries targeted by ransomware globally. For example, 98% of consumer services and 85% of energy, oil/gas, and utility organisations experienced at least one ransomware attack. The energy, oil/gas, and utility industry was also the most likely, at 53%, to report two or more successful ransomware incidents.

The findings show that for 69% of organisations in Australia, the ransomware attack started with a malicious email, such as a phishing email designed to steal credentials that would allow the attackers to breach the network. Web applications and traffic are in second place and represent an area of growing risk as part of an ever-expanding threat surface.

Globally, organisations with cyber insurance were more likely to be affected by ransomware 77% of organisations with cyber insurance were hit with at least one successful ransomware attack, compared to 65% without cyber insurance.

The research also found that 27% of the organisations surveyed globally feel they are not fully prepared to deal with a ransomware attack.

"The number of organisations affected by ransomware in 2022 likely reflects the widespread availability of low cost, accessible attack tools through ransomware-as-a-service offerings," says Fleming Shi, CTO, Barracuda. 

"The relatively high proportion of repeat victims suggests that security gaps are not fully addressed after the first incident. 

"The security industry has an essential role to play in helping organisations to defend themselves against ransomware, through deep, multilayered security technologies that include advanced email protection and backup as well as threat hunting and extended detection and response (XDR) capabilities to stop malicious activity in its tracks."

Related stories
Illumio unveils AI enhancements for faster Zero Trust Segmentation adoption
Half of online traffic in 2024 generated by bots, report finds
Keeper Security launches user-friendly passphrase generator
Cisco launches Hypershield for AI-driven security upgrade
Axis unveils hybrid cloud platform for adaptable security solutions
Top stories
Intel reshuffles Asia Pacific leadership to boost business growth
Coalition integrates cyber risk platform with top cloud services providers
Sapia Labs presents 'revolutionary' AI research at SIOP conference
Secolve & Asimily join forces to boost Australia's IoT security
Armis warns of major cyber-attack risk to 2024 global elections