Assault groups that specialize in ransomware attacks are a business entity for everything. At the same time, it should be remembered that unlike the business world where (usually) there are rules and ethics, with financial motivation fueled by relative anonymity, the imposition of fear and an almost complete willingness to pay a lot of money as an insurance policy selling tool, these groups will also compete with each other. Also earning more.
When this is the competition, and in the attached link you can see the ranking, it is easy to understand why familiar perceptions about fairness and the lack of bragging that is commonly attributed to hackers are neglected.
To avoid dealing with ransomware attacks and their business, financial, reputational, and legal consequences, organizations must change perceptions and attitudes.
As is well known, regulations and standards are inherently written at a different pace than those of the attackers and therefore the changes that have taken place before our eyes in the last two years are not covered and do not receive relevant attention, which of course requires slightly different thinking.
The basic checklist for reducing the risk of exposure to a ransomware attack:
1. Dedicated steering committee
2. Analysis of the threat to the company’s activities
3. Actions that need to be taken as a result of understanding the threat
4. Mapping necessary databases
5. Their encryption
6. Adding backup machines in different time ranges
7. Setting up, executing, and enforcing controls
8. Characterization of defense mechanisms through attackers