Announcements
Voting is now open!
Members, make your selections in the annual (ISC)² Board of Directors election. Vote Now! Voting is open until Sept. 22.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion

Who is the ideal victim from a Ransomware perspective?

HI All

 

Some interesting research on who exactly is the ideal victim for a ransomware attacks, and likely to be successful.

 

https://ke-la.com/the-ideal-ransomware-victim-what-attackers-are-looking-for/

 

What do you think of this research?

 

Regards

 

Caute_Cautim

3 Replies
bkwalker
Newcomer I

Re: Who is the ideal victim from a Ransomware perspective?

Sample size and data set seem insufficient to draw any solid conclusions.  Requests may not equal actual demand.  Seems mostly a puff piece to market services.

CISOScott
Community Champion

Re: Who is the ideal victim from a Ransomware perspective?

A client who can pay and wants zero bad press. Same thing someone performing blackmail wants. The more devastating the news of the hack getting out and the more money or insurance the person has, the better.

Caute_cautim
Community Champion

Re: Who is the ideal victim from a Ransomware perspective?

@CISOScott  But by paying the ransom, one is acknowledging that a) you have lots of money to give away b) you don't have the incident response preparedness to deal with it, so you take the easy way instead.

 

This is until the Cybersecurity insurance company, applies conditions or add additional monetary barriers to achieve or even enforces mandatory audits until the company gets the point or c) the Cybersecurity insurance company denies them coverage as a bad organisation i.e. too risky to cover etc.

 

Regards

 

Caute_Cautim