Semperis Ransomware Risk Report 2024

Keypoints

• The reports generally consist of sections such as Executive Summary, Threat Landscape, Key Findings, Defense Strategies, and Future Challenges, providing a comprehensive overview of current cyber threats and recommended responses.
• Most reports reveal that ransomware attacks are frequent, with 74% of victims experiencing multiple incidents within a year, often within short timeframes like a week or even a day.
• Key statistics include that 87% of attacks cause business disruption, and 78% of targeted organizations paid ransom, often multiple times, highlighting the lucrative nature of these attacks.
• Notable trends involve the rise of multi-vector attacks, increased targeting of critical infrastructure, and the significant impact on sectors like healthcare, finance, and utilities.
• Significant findings emphasize that traditional defenses are insufficient; organizations must focus on resilience through rapid detection, automated recovery, and especially safeguarding identity systems such as Active Directory, the core of enterprise access management.
• Recurring themes include the shift from a passive security posture to a proactive “assume breach” and “assume constant breach” mentality, recognizing that attacks are inevitable and continual.
• Reports highlight the growing importance of identity threat detection and response (ITDR), with many organizations lacking dedicated backup and recovery systems for critical identity infrastructure.
• Insights suggest that future challenges will involve addressing budget constraints, staffing shortages, and the need for Board-level support for cybersecurity initiatives.
• Major takeaways stress that investments in resilience, especially in identity protection, are crucial for minimizing long-term damages, beyond just paying ransoms.