May 12 marks the fourth anniversary of the infamous WannaCry attacks. The day has transformed into one of ransomware awareness, now dubbed as Anti-RansomwareDay by INTERPOL. Coincidentally, the recent Colonial Pipeline ransomware attack has brought even more attention to the need for ransomware preparedness and awareness.
Top cybersecurity experts provided their insights on ransomware and share why ransomware preparedness has never been more critical:
Ray Canzanese, Threat Research Director, Netskope
“Recent Netskope research shows that the majority of all malware is now delivered via cloud apps, underscoring how attackers increasingly abuse popular cloud services to evade legacy security defenses putting enterprise data at risk. Ransomware, specifically, has recently been delivered using malicious Office Documents, which we saw increase in volume by 58% in 2020. Malicious Office documents have also been used as Trojans to deliver other malware, including bankers and backdoors. Using cloud app delivery to evade legacy email and web defenses, malicious Office documents represent 27% of all malware downloads. Organizations need to consider a myriad of risks as they move to the cloud. A framework called Secure Access Service Edge (SASE) is emerging as a viable method to apply secure access and thwarts attacks, for example, by preventing malicious software from accessing the network. SASE architecture can help guide increasingly disperse organizations to realize the benefits of remote work and the cloud without compromising security."
“This year marks the 4th anniversary of WannaCry. It was one of the largest ransomware attacks in history, and one that reminds all cybersecurity professionals that we need to remain vigilant every day. Looking back at the recent cyberattacks that have compromised company data and overall safety, we need to detect these attacks faster, and remediate them quicker. The dwell time between attack and remediation has dropped dramatically in the last 10 years, however, it still is not quick enough. For instance, the 2021 hack on a