Human-operated ransomware attacks are one of the top priority cyber threats facing organisations. In this type of attack, criminals hack into the victim's network and deploy ransomware to encrypt data, before attempting to extort organisations into paying ransoms that are commonly upwards of £1million. Attackers are increasingly stealing and threatening to leak sensitive data to provide additional leverage. Alongside the crippling impact on day-to-day business operations, these attacks result in significant regulatory and reputational ramifications.
Human-operated attacks represent a more challenging threat than previous well-known ransomware attacks, such as NotPetya and WannaCry. In these attacks, wormlike functionality was used to spread the ransomware automatically and rapidly across the Internet and through organisations’ networks. In contrast, human-operated ransomware is controlled by skilled and adaptable criminals who are motivated by financial gain, and can spend months identifying and overcoming defences to maximise the impact of their attacks.
Organisations who have not already taken steps to understand and reduce their vulnerability to these attacks should act now.
What makes organisations vulnerable to human-operated ransomware
How to respond to this growing threat
How to rapidly improve your cyber security and reduce the risk of a ransomware attack