90% of organizations in the Emirates that paid a ransom demand were hit again; 35% reported paying a second ransom and 5% paid a third time
Dubai, United Arab Emirates: Cybereason, the XDR company, today published results of their second annual ransomware study, during a year of unprecedented attacks, to better understand the true impact on businesses. The global study reveals that 77 percent of UAE organizations suffered at least one ransomware attack over the past 24 months.
The study once again finds that ‘it doesn’t pay-to-pay’ a ransom demand, as 90 percent of UAE organizations that paid were hit by ransomware a second time, with 83 percent saying the second attack came in less than a month and 78 percent reporting that threat actors demanded a higher ransom amount.
The report, titled Ransomware: The True Cost to Business Study 2022, further revealed that of the UAE organizations who opted to pay a ransom demand in order to regain access to their encrypted systems, 45 percent reported that some or all of the data was corrupted during the recovery process. These findings underscore why it does not pay to pay ransomware attackers, and that organizations should focus on detection and prevention strategies to end ransomware attacks at the earliest stages before critical systems and data are put in jeopardy.
“Ransomware attacks are traumatic events, and when ransomware gangs attack a second, third or fourth time in a matter of weeks, it can bring an organization to its collective knees. Deploying effective anti-ransomware solutions is easier said than done, and the hackers know it. After being hit the first time by a ransomware attack, organizations need time to assess their security posture, determine what are the right tools to deploy, and then find the budget to pay for it. The ransomware gangs know this and it is the biggest reason they strike again quickly,” said Lior Div, Cybereason CEO and Co-founder.
Other key UAE findings in the research include:
- Customers at Heart of Attacks: 70 percent of companies (16 percent higher than the global average) said attackers were after customer data.
- Senior Leadership Attrition: 37 percent of companies suffered C-level resignations following a ransomware attack.
- Layoffs Result from Ransomware Attacks: 37 percent of organizations laid off staff as a result of the attack.
- Ransomware Attacks Lead to Business Disruptions: 85 percent of businesses (19 percent higher than the global average) were forced to temporarily or permanently suspend operations following a ransomware attack.
- Ransom Demands Increase with Each Attack: 78 percent of companies (11 percent higher than the global average) paid a higher ransom demand the second time.
- Organizations Don’t Have the Right Tools: An overwhelming 92 percent of organizations admitted that ransomware gangs were in their network between one month to a year before they discovered them. This points to the double extortion model where attackers first steal sensitive data then threaten to make it public if the ransom demand is not paid.
Survey Methodology The research was conducted by Censuswide in April of 2022 on behalf of Cybereason. 1,456 cybersecurity professionals took part in the survey—with participants from the United States, United Kingdom, Japan, Germany, France, Italy, South Africa, United Arab Emirates, and Singapore. Major industry verticals covered in the research including: Financial Services, Government, Retail, Manufacturing, Healthcare and Legal.
Cybereason is the XDR company, partnering with Defenders to end attacks at the endpoint, in the cloud and across the entire enterprise ecosystem. Only the AI-driven Cybereason Defense Platform provides planetary-scale data ingestion, operation-centric MalOp™ detection, and predictive response that is undefeated against modern ransomware and advanced attack techniques. Cybereason is a privately held international company headquartered in Boston with customers in more than 40 countries.