IT solutions provider Datto Inc. has announced findings from its fourth annual Global State of the Channel Ransomware Report. The survey of more than 1400 MSP decision-makers that manage the IT systems for SMEs found that ransomware remains their most common cyber threat.
SMEs have become a prime target for attackers. The 2019 Global State of the Channel Ransomware Report uncovered a number of ransomware trends specifically impacting the SME market:
- Ransomware attacks are pervasive. 85 per cent of MSPs reported attacks against SMEs over the last two years, compared to 79 per cent of MSPs who reported the same in 2018. In the first half of 2019 alone, 56 per cent of MSPs reported attacks against SME clients. In Australia and New Zealand, 91 per cent of MSPs report attacks against SMEs in the last two years, the highest rate globally.
- A disconnect exists on the significance of ransomware as a threat. 89 per cent of MSPs report that SMEs should be very concerned about the threat of ransomware. However, only 28 per cent of MSPs report SMEs are very concerned about the threat.
- The cost of ransomware is significant. 64 per cent of MSPs report experiencing a loss of business productivity for their SME clients while 45 per cent report business-threatening downtime. The average cost of that downtime is US$141,000, a more than 200 per cent increase over last year’s average downtime cost of US$46,800.
One of the most basic and effective controls when it comes to ransomware preparation is being underutilised. MSPs report enabling 2FA on only 60 per cent of email clients and 61 per cent of password managers, despite the fact that the majority of MSPs (67 per cent) claim phishing emails are the leading cause of ransomware breaches at SMEs.
Business continuity and disaster recovery (BCDR) solutions have continued to prove to be the most effective in lessening the impact of a ransomware attack. 92 per cent of MSPs report that their clients with BCDR solutions in place are less likely to experience significant downtime during an attack. In addition, four out of five MSPs state victimised clients with BCDR tools in place recovered from an attack in 24 hours or less, while less than one in five MSP clients without BCDR were able to do the same.
“Ransomware attacks most often succeed through very sophisticated phishing techniques – for example, when someone clicks on something they shouldn’t and the malware infiltrates their contact list – the attackers then use those credentials to exploit further,” said Daniel Johns, Head of Services at ASI Solutions. “As such, a proactive approach to cybersecurity, including user awareness and training, is vital. As SMEs continue to be heavily targeted by ransomware, we’ll continue to work directly with our clients to help reduce the risk and impact of an attack, should it occur.”
SaaS applications are also a prime target for ransomware attacks, with MSPs globally reporting a 15 per cent increase in the attacks within Office 365 year on year. Of interest the highest rate globally was in Australia and New Zealand, with 37 per cent of MSPs reporting attacks on SaaS applications – including Office 365, Dropbox and the G-Suite; a 9 per cent increase from the global average of 28 per cent.
“Recording the highest rate globally of reported attacks in this region is a wakeup call for SMEs,” James Bergl, Regional Director, APAC Datto, said. “We understand that the cost of downtime that can cripple an SME. As such we work closely with our MSPs to take a proactive approach to delivering tailored cybersecurity solutions for small and medium businesses.”
