A report from Osirium Technologies shows that companies have different ransomware attack risks particularly when businesses depend on outsourced IT.
The Osirium Ransomware Index suggests that while some companies have unavoidable attacks, others have good security but could still be at risk of an attack by proxy – via their supply chain.
Of the 1001 UK IT managers surveyed for the research, 77 percent expressed a growing concern that despite their company having a good protection system in place.
Just over half thought that while some attacks are avoidable, others aren’t – which underlines the opportunities for vendors and channel partners to assist customers in identifying and understanding where the very real ransomware threats lie and supporting them in protecting their businesses accordingly.
Across the respondents surveyed, 39 percent estimated it would take a week for their business to recover from a cyberattack – with 47 per cent admitting it could take a month or more.
Medium and large-sized businesses were most concerned about their supply chain putting them at risk (82 percent) yet, despite this, only 44 percent have a strict requirement in place when it comes to the supply chain relationships. 39 percent said they had a loose agreement whilst eight per cent don’t have or haven’t even considered one. However, 66 percent of businesses say they ask for regular updates from their supply chain about their measures and protection/recovery plan to tackle ransomware attacks.
Over three-quarters of respondents were concerned about the risk from their supply chain (suppliers, clients, and partners) and that figure rises to 82 percent when IT depends on outsourced IT services.
More than 69 percent of in-house IT teams have experienced a ransomware attack and that number rises to 88 percent for those with partially or fully outsourced IT.
More than half of those surveyed with fully outsourced IT services said they had also sought specific external consultancy on how to prepare for a ransomware attack. 61 per cent of businesses with A mix of in-house and outsourced IT services said they use online backups to prepare for a ransomware attack – versus just 46 per cent of businesses with a fully internalised IT.
Osirium CEO David Guyatt said that the Ransomware Index shows that despite continued improvements in security protocols, clients remain concerned about the risks of ransomware attacks from third party IT suppliers,
“There seems to still be a long way for MSPs and MSSPs to go before client confidence reaches an acceptable level, and they should therefore take action now in improving their ransomware protection– both to protect their clients and to benefit from early competitive differentiation.”
