Security Market Segment LS
Tuesday, 01 August 2017 09:16

Ransomware: Claim that 22% SMBs shutting shop after attacks Featured


Ransomware attacks caused 22% of small and medium-sized businesses in seven countries, including Australia, to pack up for good, a report from the security firm Malwarebytes claims.

It found that about a third of the businesses surveyed had experienced a ransomware attack in the last year. Concern over ransomware varied from a low of 57.7% in Australia to a high of 78.9% in France, with the US second at 74.2%.

Ransomware attacks mainly Windows computers. Attacks have increased in frequency over the last two years, with major global attacks taking place in May and June.

Malwarebyte's "Second Annual State of Ransomware Report" covered 1054 companies with less than 1000 employees in North America, France, the UK, Germany, Australia and Singapore and was conducted by Osterman Research.

The company's chief executive Marcin Kleczynski said: “Businesses of all sizes are increasingly at risk for ransomware attacks. However, the stakes of a single attack for a small business are far different from the stakes of a single attack for a large enterprise." 

Kleczynski said the research findings indicated that SMBs were suffering to the point where they had to shut shop.

"To make matters worse, most of them lack the confidence in their ability to stop an attack, despite significant investments in defensive technologies," he said. "To be effective, the security community must thoroughly understand the battles that these companies are facing, so we can better protect them.”

Major findings:

  • Ransomware can devastate SMBs. In about one in six affected firms, a ransomware infection caused 25 or more hours of downtime, with some reporting downtime of more than 100 hours. While 22% ceased business operations immediately, another 15% lost money.
  • Even though most SMBs (75%) placed a high priority on tackling ransomware attacks, they lacked confidence that they could deal with such incidents. 
  • Many did not know where the ransomware had come from and thus infections spread swiftly. About 27% were unable to identify how endpoint(s) were infected and in a third of the cases the ransomware spread to other devices. In 2% of cases, every single device in the organisation was infected.
  • SMBs in the US were hit harder by malicious emails containing ransomware than their counterparts in Europe. Email was the most common attack vector in the US - 37% came from a malicious attachment and 27% from a malicious link in an email.
  • In Europe, 22% of infections came from malicious email attachments and a similar percentage were attacked through malicious links in emails.
  • Most SMBs did not believe in paying ransoms, with 72% saying such demands should be ignored. Of the remainder, most said the ransom said be paid only if the data that had been encrypted was irreplaceable. A third of those who did not pay up lost data as a result.
  • Concern about ransomware was highest (54%) among the financial services sector, while transportation business entities (26%) were least concerned.
  • More than a third of SMBs claimed to have been running anti-ransomware software, yet about a third still experienced attacks.

The US specific part of the survey can be downloaded here.


26-27 February 2020 | Hilton Brisbane

Connecting the region’s leading data analytics professionals to drive and inspire your future strategy

Leading the data analytics division has never been easy, but now the challenge is on to remain ahead of the competition and reap the massive rewards as a strategic executive.

Do you want to leverage data governance as an enabler?Are you working at driving AI/ML implementation?

Want to stay abreast of data privacy and AI ethics requirements? Are you working hard to push predictive analytics to the limits?

With so much to keep on top of in such a rapidly changing technology space, collaboration is key to success. You don't need to struggle alone, network and share your struggles as well as your tips for success at CDAO Brisbane.

Discover how your peers have tackled the very same issues you face daily. Network with over 140 of your peers and hear from the leading professionals in your industry. Leverage this community of data and analytics enthusiasts to advance your strategy to the next level.

Download the Agenda to find out more


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.



Recent Comments