Responding to the growing threat of human-operated ransomware attacks

Raymond Teo Cyber Leader, South East Asia Consulting, PwC Singapore January 2022

Human-operated ransomware attacks are one of the top priority cyber threats facing organisations.

In this type of attack, criminals hack into the victim's network and deploy ransomware to encrypt data, before attempting to extort organisations into paying ransoms that are commonly upwards of ÂŁ1million. Attackers are increasingly stealing and threatening to leak sensitive data to provide additional leverage. Alongside the crippling impact on day-to-day business operations, these attacks result in significant regulatory and reputational ramifications.

Human-operated attacks represent a more challenging threat than previous well-known ransomware attacks, such as NotPetya and WannaCry. In these attacks, wormlike functionality was used to spread the ransomware automatically and rapidly across the Internet and through organisations’ networks. In contrast, human-operated ransomware is controlled by skilled and adaptable criminals who are motivated by financial gain, and can spend months identifying and overcoming defences to maximise the impact of their attacks.

Organisations who have not already taken steps to understand and reduce their vulnerability to these attacks should act now.

Download our new whitepaper for an in-depth look at

What makes organisations vulnerable to human-operated ransomware
How to respond to this growing threat
How to rapidly improve your cyber security and reduce the risk of a ransomware attack

How we can help

Our experienced team can help you manage the growing threat of human-operated ransomware attacks.

We have successfully helped organisations across a range of sectors to understand their vulnerability to this threat, implement tactical improvements to immediately reduce risk, and mobilise strategic programmes to address root cause issues and build sustainable cyber security capabilities. We have also helped organisations prepare for and manage the response to major ransomware attacks.

Contact us

Raymond Teo

Cyber Leader, South East Asia Consulting, PwC Singapore

+65 8522 3492


Jimmy Sng

Technology Risk Services Leader, PwC Singapore

+65 9746 6771


Kyra Mattar

Third Party Trust Leader, PwC Singapore

+65 9735 2506


Jayme Metcalfe

Partner, Digital Solutions, PwC Singapore

+65 8729 0306


Saurabh Kaushik

Director, Cybersecurity, PwC Singapore

+65 9326 8618


Follow us