Phone  0345 880 4554

20 Years of EvolvIT
Online Quote  
Client Login  

Ransomware Attacks Surge in the UK: How to Keep Your Business Safe

Ransomware is rapidly rising in the UK. Last year, the nation faced a record number of ransomware attacks, according to data from the Information Commissionerโ€™s Office (ICO). One of the major incidents saw the NHS targeted again, with the affected hospitals forced to cancel critical emergency procedures.

These figures only represent self-reported incidents. True numbers can be much higher. While companies are required to disclose breaches that affect personal data, ambiguous definitions have allowed organisations to bypass reporting. The new Cyber Security and Resilience Bill will require only regulated entities to report ransomware, making the landscape even harder to prepare for those in the private sector.

Faced with mounting risk and a lack of transparency and coordinated industry response, businesses will need to take a proactive stance against the threat of ransomware. The first step of defending against attacks is identifying your vulnerabilities. 

Common Ransomware Vectors

Legacy Systems

In 2023, a ransomware attack on the British Library saw 600GB of data stolen and critical servers destroyed. While the institute was lauded for its response to the incident, it continues to struggle six months after the attack. Many systems were outdated and no longer supported by vendors or compatible with modern infrastructure, making them impossible to recover.

Legacy systems donโ€™t only hamper recovery efforts. Old systems that are no longer patched become easy targets for criminals who use the bleeding edge of technology to crack systems.

Phishing and Social Engineering

Phishing is the most prevalent type of cybercrime in the UK, encompassing 84% of all identified incidents. While not all phishing attacks result in ransomware, it has become a major channel for criminals to insert the malware needed to seize systems and sensitive data.

Employee training is the most effective way to combat phishing. However, a lack of investment is putting businesses at risk, especially small businesses who may not have the budget to invest in comprehensive training programmes.

Remote Desktop Protocols

More than a quarter of employees in the UK work in part remotely. These hybrid arrangements have pushed more companies to adopt remote working applications, driving impressive growth in the remote desktop software market.

However, this change in how we work also brings new dangers. Remote employees access company networks from an array of devices and connections, some of which may have lax safeguards. These unsecure remote desktop configurations serve as an open vulnerability for criminals to exploit.

New Technologies

Cloud technology and artificial intelligence (AI) adoption has spiked in recent years, driven by businesses eager to reap the promise of agility and efficiency. Today, just as many SMEs in the UK use cloud services as on-premise solutions.

However, research suggests that businesses donโ€™t fully realise the risk introduced by these applications. Most popular chatbots can be jailbroken and used to conduct malicious activity. Half of the data breaches of 2023 occurred from the cloud.

Best Practices For Mitigating Ransomware

Now that you know about the common entry points ransomware can take into your network, itโ€™s time to discuss which measures can best patch the holes in your defences. Here are four ways SMEs can minimise the risk of ransomware.

Train Employees

Phishing emails are becoming an increasingly common vector for ransomware because attempts are getting more difficult to discern. With the help of generative AI, criminals are able to create sophisticated emails that are essentially free from the usual red flags employees are told to look out for.

Against this increasingly intelligent threat, anti-phishing training and testing will be crucial for keeping employees vigilant. Resources and programmes are abundant, putting training within reach even for SMEs.

Schedule Regular & Multiple Backups

โ€œDo not payโ€ is the UK governmentโ€™s resolute statement against ransoms. However, research suggests that a majority of companies ignore the advice, paying out hundreds of millions in hopes of recovering access to their data.

Itโ€™s a hope thatโ€™s dashed nearly every time. Despite making ransom, 92% of organisations do not get their data back. Regular backups minimise loss and allow businesses to deny the extortion. Criminals know this, and attempt to compromise backups as well during attacks. Multiple backups using a variety of media and stored in separate locations will be a powerful tactic for foiling attackers.

Secure Your Remote Access Networks

Remote desktop protocol (RDP) offers significant advantages, but security practices have not fully adapted to their widespread use yet. Unsecured ports and stolen credentials are just two of the leading causes behind compromised remote desktops. 

Several measures can be implemented immediately to enhance security. First, actively monitor remote working tools connected to your network. Second, adopt a zero-trust approach to minimise the risk of unauthorised access, ensuring that a compromised account does not jeopardise the entire network. Additionally, consider requiring the use of a VPN when accessing company software.

Vet Your Service Providers

Many of the biggest data breaches arenโ€™t the result of criminals directly attacking a business. Target fell victim to a massive data breach when criminals stole login credentials from its HVAC maintenance provider. The latest NHS attack originated from Synnovis, a third-party pathology lab.

Mitigating risks from third-party providers requires establishing transparency. Contracts alone do not offer enough insight into a companyโ€™s cybersecurity practices. Businesses must discuss information security and continuity plans during the onboarding process. Additionally, organisations are responsible for checking that partners comply with both global and local cybersecurity regulations.

As incidents continue to escalate in the UK, businesses must adopt a proactive and deliberate approach to cybersecurity. By implementing best practices and fostering a culture of vigilance and resilience, organisations can better protect themselves against the ever-evolving threat of ransomware.

Evolvit specialises in cybersecurity solutions tailored for the needs of SMEs. Contact us today to learn how to better protect your business against ransomware.

Recent Posts
Categories