Cyber intrusions can quickly morph into legal, financial and reputational crises. TRansomware has grown into a billion-dollar business and has targeted nearly every industry, from financial services to healthcare to energy and utilities, often leading to large ransom sums and restoration costs. Though we are familiar with the severity and consequence of ransomware attacks, we are often left wondering—what happens next? In an interview with Information Security Media Group, Alan Brill, Senior Managing Director in the Cyber Risk practice of Kroll, a division of Duff & Phelps, states, “There is a need for practicality. It's all about knowing, as opposed to guessing. You want to deal with the facts before you make the decision."
Alan discusses why a ransomware attack is not like paying a corporate bill and highlights the risks organizations face when dealing with bad actors. He further discusses the importance of using intelligence when faced with an attack, which is ideal to recognize what family of ransomware and what variant was used. This perception allows organizations to analyze not only the history of the strain but also the bad actors involved and how best to work with insurers. Additionally, Alan shares best practices for responding to ransomware and data exfiltration incidents.
Read the full article here.
You can now listen to Alan Brill’s interview on Apple Podcasts on what organizations can do if they get hit by a ransomware attack. Click here to listen to the podcast.