Never pay the ransom — a cybersecurity CEO explains why

Ransomware Surge

Ransomware attacks in healthcare have surged, with a 123% increase in 2021 alone. Steve Cagle highlights the severe impact on hospital operations, where attackers exploit the critical nature of healthcare services to demand ransoms. He notes, "Healthcare providers are the most likely organizations to actually pay the ransom," due to the inability to access medical records and the need to delay procedures 1. The dual threat of data encryption and exfiltration exacerbates the situation, making it a complex challenge for healthcare providers 2.

   

Economic Drivers

The business model of ransomware as a service has created a lucrative industry for cybercriminals. Steve Cagle explains that attackers assess targets based on their ability to pay, with larger organizations facing higher demands 3. He states, "There's a whole industry that's been established, ransomware, as a service," highlighting the economic incentives driving these attacks. The role of cryptocurrency in facilitating these payments has further complicated the landscape, although its market fluctuations don't significantly impact the frequency of attacks 4.

   

Strategic Planning

Effective risk management and strategic planning are crucial in combating ransomware. Steve Cagle emphasizes the importance of rigorous risk analysis and incident response exercises to minimize the impact of attacks 5. He advises, "You want to have a good business impact analysis in place," to prepare for potential breaches. The involvement of the FBI and establishing relationships with local offices are recommended steps for organizations to take in response to these threats 6.

   

Crypto Influence

Cryptocurrency has played a pivotal role in the proliferation of ransomware attacks, enabling payments at scale. Steve Cagle notes that while the crypto market's fluctuations don't directly affect attack frequency, they do influence the strategies of cybercriminals 4. He mentions, "Cyber insurance underwriters have had record payouts," due to the rise in breaches, leading to increased premiums and stricter security requirements for coverage. This dynamic underscores the complex interplay between technology, finance, and cybersecurity in the modern threat landscape.