Many retailers are struggling to deal with ransomware attacks

The survey should be a wake-up call for organizations in the retail sector, argues Chester Wisniewski, director, global field CTO, Sophos, saying that retailers need to tighten up on security, now.

Longer recovery

Not every victim pays the ransom demand. But among those that do, their median recovery cost (excluding the ransom payment) was four times the recovery cost of those that had a working backup ($3 million and $750,000 respectively).

Sophos’ report showed more than two in five (43%) paying the ransom demand. “There are no shortcuts in these situations and rebuilding systems is almost always required. It's better to deprive the criminals of their spoils and build back better,” said Wisniewski.

The good news for retailers (but not for everyone else) is that the percentage of retail firms being targeted by ransomware threat actors dropped from 77% last year, to 69% this year. However, the percentage of firms that recovered in less than a day dropped from 15% to 9%. At the same time, the percentage of those who took more than a month to do the same rose from 17% to 21%.

Ransomware usually starts with a reckless employee downloading malware, or granting the attackers access to their endpoints in some way. Hence, the best protection against ransomware starts with the education of the employees, on the dangers of cyberattacks.

Backing up key systems and data, and installing endpoint protection services also helps.

More from TechRadar Pro

• Ransomware, AI, and social engineering all set to be 2024's biggest security threats
• Here's a list of the best firewalls today
• These are the best e-commerce platforms right now