SECURITY

Ransomware Study: Two Thirds of Security Professionals Believe Ransomware and Terrorism Threats are Equal

Venafi | December 27, 2021

Ransomware Study: Two Thirds of Security Professionals Believe Ransomware and Terrorism Threats are Equal
Venafi, the inventor and leading provider of machine identity management, announced the findings of a global survey of more than 1,500 IT security decision makers that reveals that almost two-thirds (60%) of security almost two-thirds (60%) believe ransomware threats should be prioritized at the same level as terrorism. These opinions echo the U.S. Department of Justice, which raised the threat level of ransomware following the Colonial Pipeline attack earlier this year. The study also found that less than one-third of respondents have implemented basic security controls that break the ransomware kill chain.

Other key findings include:

  • Over two thirds (67%) of respondents from organizations with more than 500 employees experienced a ransomware attack over the last 12 months—a figure that rises to 80% for respondents from organizations with 3,000-4,999 employees.
  • Over a third (37%) of respondents would pay the ransom but more than half of these (57%) would reverse that decision if they had to publicly report the payment, as required by the Ransomware Disclosure Act, a U.S. Senate bill that would require companies to report ransomware payments within 48 hours.
  • Despite the rising number of ransomware attacks, more than three-quarters (77%) say they are confident the tools they have in place will protect them from ransomware attacks. Australian IT decision makers have the most confidence in their tools (88%), compared with 71% in the U.S. and 70% in Germany.
  • Twenty two percent believe paying a ransom to be “morally wrong.”
  • Seventeen percent of those breached admitted they paid the ransom, with U.S. respondents paying most often (25%) and Australian companies paying least often (9%).

The fact that most IT security professionals consider terrorism and ransomware to be comparable threats tells you everything you need to know; these attacks are indiscriminate, debilitating and embarrassing. Unfortunately, our research shows that while most organizations are extremely concerned about ransomware, they also have a false sense of security about their ability to prevent these devastating attacks. Too many organizations say they rely on traditional security controls like VPNs and vulnerability scanning instead of modern security controls, like code signing that are built-in to security and development processes.”

Kevin Bocek, Vice President ecosystem and threat intelligence at Venafi

The study shows that most organizations are not using security controls that break the ransomware kill chain early in the attack cycle. Many ransomware attacks start with phishing emails that include a malicious attachment—but just 21% restrict the execution of all macros within Microsoft Office documents. Less than a fifth (18%) of companies restrict the use of PowerShell using group policy, and only 28% require all software to be digitally signed by their organization before employees are allowed to execute it.

About the research
Conducted by Sapio Research, Venafi’s survey evacuated the opinions of 1,506 IT security officers across the U.K., Australia, France, Germany, Benelux and the U.S.

About Venafi
Venafi is the cybersecurity market leader in machine identity management, securing machine-to-machine connections and communications. Venafi protects machine identity types by orchestrating cryptographic keys and digital certificates for SSL/TLS, SSH, code signing, mobile and IoT. Venafi provides global visibility of machine identities and the risks associated with them for the extended enterprise—on premises, mobile, virtual, cloud and IoT—at machine speed and scale. Venafi puts this intelligence into action with automated remediation that reduces the security and availability risks connected with weak or compromised machine identities while safeguarding the flow of information to trusted machines and preventing communication with machines that are not trusted.

With over 30 patents, Venafi delivers innovative solutions for the world's most demanding, security-conscious Global 5000 organizations and government agencies, including the top five U.S. health insurers; the top five U.S. airlines; the top four credit card issuers; three out of the top four accounting and consulting firms; four of the top five U.S. retailers; and the top four banks in each of the following countries: the U.S., the U.K., Australia and South Africa.

Spotlight

VMware Server is a free virtualization product for Microsoft Windows and Linux servers. It enables users to quickly provision new server capacity by partitioning a physical server into multiple virtual machines. You can use VMware Server to provision a wide variety of plug‐and‐play virtual appliances for commonly used infrastructure.

Related News

A10 Networks, Dell Technologies Release a Set of Solutions for Single-service or Multi-tenant Virtual Platforms

A10 Networks | June 11, 2020

A10 Thunder® Application Delivery Controller and A10 Thunder Multi-tenant Virtual Platform are turnkey software and hardware solutions that provide flexibility and rapid deployment for multi-cloud infrastructures. The solutions offer single-service or multi-tenant virtual platforms to optimize IT organizations’ CAPEX and OPEX. The A10 Thunder® Application Delivery Controller on Dell Technologies and A10 Thunder Multi-tenant Virtual Platform on Dell Technologies is expected to be available in Q3 2020 initially for the Americas market. A10 Networks today announced a set of solutions that deliver application security and availability for customers who are increasingly facing the operational and security complexities of hybrid-cloud infrastructures. Working with Dell Technologies OEM | Embedded & Edge Solutions, the new set of solutions combine A10’s hybrid-cloud-ready software with purpose-built Dell Technologies hardware for encrypted application delivery, advanced load balancing, and SSL visibility. This provides customers with a single-source vendor to ease lifecycle management. The solutions offer single-service or multi-tenant virtual platforms to optimize IT organizations’ CAPEX and OPEX. Hybrid-cloud Reliance Drives Requirements Digital transformation initiatives are driving rapid adoption of hybrid and multi-cloud environments to serve customers and facilitate workforce transformation, particularly with the recent spikes in work-from-home requirements. At the same time, companies are facing the expanding challenges of realigning and automating security and IT operations to encompass this complex hybrid-cloud world. Operational efficiency, management, visibility and security remain top concerns for organizations. According to a recent survey by the BPI Network, while 84 percent expect to increase their reliance on public or private clouds over the next 24 months, improving hybrid and multi-cloud security is seen as their most critical challenge, followed by a lack of hybrid/multi-cloud talent and expertise, the need for centralized visibility, and the capacity to more effectively manage application and infrastructure complexity.1 In addition, Google has reported2 that 97 percent of Chrome page loads are encrypted, highlighting the need to encrypt server traffic to customers, while also decrypting internal user traffic for security devices to block user attacks. Read More: Securden Eliminates Unveils VPN Hassles with Significant Enhancements to Its Remote Access Solution Enterprises are seeking to boost the proficiency of their IT operations across hybrid and multi-cloud environments while deriving full value from existing investments in technology infrastructure and personnel. This effort necessarily extends to application-delivery infrastructure. The relationship between A10 Networks and Dell Technologies, which combines A10’s robust and scalable load-balancing and security software with Dell Technologies’ widely deployed hardware platforms, helps enterprises achieve greater operational efficiencies through the utilization of familiar technologies that don’t involve a compromise in application availability or security, Brad Casemore, vice president of research for datacenter networks, IDC. Flexible Application Security and Availability A10 Thunder® Application Delivery Controller (ADC), and A10 Thunder Multi-tenant Virtual Platform (MVP) are turnkey software and hardware solutions that provide flexibility and rapid deployment for multi-cloud infrastructures. The new A10 Thunder ADC, designed on Dell EMC PowerEdge R640XL and R740XL servers, as well as Dell EMC Virtual Edge Platform 4600, is a single-service platform that enables: • Application availability to maintain uptime for web applications and data center and cloud infrastructure • Application acceleration to deliver a better user experience, maintain SLAs and optimize server utilization • Application security to enhance the existing security infrastructure and protect against the latest threats, while providing SSL/TLS offload for encrypted server traffic The A10 Thunder MVP, designed on Dell EMC PowerEdge R640XL and R740XL servers, enables multiple services, including Thunder ADC and Thunder SSL Insight (SSLi). The Thunder MVP: • Improves operational agility and flexibility by running multiple independent instances on a single optimized and accelerated hardware platform. Each can run a different version and can be restarted separately • Delivers Thunder ADC instances, providing increased uptime, faster user experience and attack prevention for highly available, accelerated and secure applications • Integrates Thunder SSLi instances, providing security devices with decrypted SSL/TLS traffic visibility to stop data leaks and end-user attacks, for a foundation for Zero-Trust. A10 URL filtering and threat intelligence options can be added for enhanced user security All the solutions can be augmented by the A10 Harmony® Controller to ease SecOps and DevOps deployments, simplify application lifecycle management, integrate into CI/CD workflows and enable fast troubleshooting with advanced drill-down analytics and central management, providing IT operations a consistent on-premises and multi-cloud operational experience. As a leader in the enterprise market, it was a natural decision for A10 to work with Dell Technologies OEM | Embedded & Edge Solutions to bring our application delivery and security solutions to our customers. Our turnkey solutions will help customers tackle the current and emerging business challenges of providing secure and available applications and ensuring networks are protected against attacks in this multi-cloud world, Dhrupad Trivedi, president and CEO of A10 Networks. “Working with A10, we’ve designed a solution to bring together A10’s leading application delivery and SSL visibility with our Dell Technologies solutions to deliver the performance customers expect and need,” said Ron Pugh, vice president and general manager, OEM, Embedded & Edge Solutions, Dell Technologies. “A10’s new ADC and MVP solutions will enable rapid deployments and ease customers’ acquisition process.” Read More: OVHcloud US Launches New Line of Virtual Private Servers to Meet Cloud-based Application Requirements About A10 Networks A10 Networks provides secure application services for on-premises, multi-cloud and edge-cloud environments at hyperscale. Our mission is to enable service providers and enterprises to deliver business-critical applications that are secure, available and efficient for multi-cloud transformation and 5G readiness. We deliver better business outcomes that support investment protection, new business models and help future-proof infrastructures, empowering our customers to provide the most secure and available digital experience. Founded in 2004, A10 Networks is based in San Jose, Calif. and serves customers globally.

Read More

VIRTUAL SERVER INFRASTRUCTURE

Cox Network Transformation to Bring Multi-Gig Internet Service to Hampton Roads

Cox Communications | January 07, 2022

Cox Communications announced the company will make significant broadband network enhancements in Hampton Roads. As part of a multi-billion dollar infrastructure investment to build a 10 Gigabit-capable, fiber-optic network, these enhancements will enable Cox to deliver multi-Gigabit speeds to its customers in the next few years, both downstream and upstream, to support a host of bandwidth-hungry applications. Cox has invested $55 million over the last 5 years in Hampton Roads and was the first to make Gigabit service available to all customers in the market. Cox now plans to invest an additional $100+ million over the next 3 years to deliver multi-Gigabit symmetrical speeds over high-speed broadband connections, starting in Norfolk. We're preparing for the next generation of internet uses at home and in business. The ever-growing number of connected devices combined with exciting new applications of technology such as virtual reality learning, autonomous vehicles or even exploring the meta-verse will require more network capacity and increased speeds and symmetry. We are committed to being the internet provider customers can count on to have the speed they need now and in the future." J.D. Myers, Senior Vice President and Region Manager, Cox Communications In addition to faster speeds, Cox also provides secure and reliable wifi connections covering the whole home. Cox's Panoramic Wifi delivers the equipment its customers need for best-in-class wifi that can be easily updated as technology changes. Customers also get control and security through the Panoramic Wifi app with Advanced Security, protecting every device connected to their network. As the largest private telecom company in America, Cox delivers value beyond superior internet and entertainment services in the communities it serves. A recent 2019-2020 economic impact assessment of the company's operating, capital project and social investment data in Hampton Roads indicates that Cox Communications recurring operations support more than $170 million in economic output locally, including more than 1,000 jobs and near $50 million in wage and salary payments. Beyond this, the company's $1.5+ billion annual capital investment in technology infrastructure generates more than $20 billion in economic output supporting over 55,000 jobs and more than $3 billion in wage and salary payments. Cox Communications also generates over $480 million annually in state and local tax contributions. About Сoх Communications Cox Communications is committed to creating meaningful moments of human connection through technology. The largest private broadband company in America, we proudly serve nearly seven million homes and businesses across 18 states. We're dedicated to empowering others to build a better future and celebrate diverse products, people, suppliers, communities and the characteristics that make each one unique. Cox Communications is the largest division of Cox Enterprises, a family-owned business founded in 1898 by Governor James M. Cox.

Read More

Mercato Partners Announced Acquisition of its Portfolio Company SaltStack, by VMWare

Mercato Partners | September 29, 2020

Today, Mercato Partners, announced the acquisition of its portfolio company, SaltStack, by VMWare, a division of Dell, a global leader in cloud computing and virtualization software and services for an undisclosed amount. Part of the Mercato Traverse Growth Fund III, SaltStack specializes in network, security, and infrastructure automation and management. This marks the fourth portfolio exit in 2020 for Mercato's Traverse Growth Fund. On September 18, Ericsson agreed to purchase Boise, Idaho-based Cradlepoint for a $1.1B all-cash transaction. In June Central Logic was acquired by Rubicon Technology Partners. Finally, in April, Galileo Financial Technologies was acquired by SoFi for $1.2B.

Read More

Spotlight

VMware Server is a free virtualization product for Microsoft Windows and Linux servers. It enables users to quickly provision new server capacity by partitioning a physical server into multiple virtual machines. You can use VMware Server to provision a wide variety of plug‐and‐play virtual appliances for commonly used infrastructure.