While the company understandably did not mention operating systems when it came to ransomware statistics, it was abundantly clear from the names of the ransomware listed (graphic below) that no other operating system other than Windows was under attack.
For the fourth year running, the well-known CryptoLocker ransomware was the biggest scourge with 66% of MSPs reporting attacks by this strain.
More than two years after it burst on to the scene, WannaCry is still haunting Windows users, with 49% of MSPs reporting attacks by this strain which incorporates an exploit developed by the American National Security Agency and leaked on the Web in 2016. CryptoWall (34%) and Locky (24%) are other well-known names of ransomware that prey on Microsoft's operating systems.
Ninety-two percent of MSPs found that SMBs who had a business continuity and disaster recovery solution in place were able to avoid significant downtime after a ransomware attack, with recovery taking 24 hours or less.
Ransomware was far and away the most prominent malware threat, with 85% of the MSPs saying that this was the case with SMBs. In the first half of the calendar year, 56% of MSPs reported attacks on clients while 15% reported multiple attacks in a single day.
The effects of ransomware ranged from loss of business productivity (reported by 64% of MSPs), business-threatening downtime (45%), lost data or devices (34%), infection spreading on a network (33%), decreased client profitability (29%), and paying a ransom to recover files (24%).
The cost of downtime had risen by a factor of 200% from 2018, the survey said, with the cost in 2019 being US$141,000 compared to US$46,800 the previous year. Compared to the average ransom request of US$5900, the downtime cost was 23 times greater.
“Ransomware attacks most often succeed through very sophisticated phishing techniques – for example, when someone clicks on something they shouldn’t and the malware infiltrates their contact list – the attackers then use those credentials to exploit further,” said Daniel Johns, head of Services at leading Australian ICT company, ASI Solutions.
The survey found that software-as-a-service applications were also a prime target for ransomware attacks, with MSPs globally reporting a 15% increase in the attacks within Office 365 year-on-year.
The highest rate globally was in Australia and New Zealand, with 37% of MSPs reporting attacks on SaaS applications – including Office 365, Dropbox and the G-Suite, a 9% increase from the global average of 28%.
“It is no surprise that the frequency and sophistication of ransomware attacks against SMBs in Australia and New Zealand is on the rise, but recording the highest rate globally of reported attacks in this region is a wake-up call for SMBs,” said James Bergl, regional director, APAC Datto.
Graphics: courtesy Datto