What are organizations getting wrong when it comes to fighting back against ransomware?

2.9k views1 Upvote4 Comments

CISO in Software, 201 - 500 employees
No matter how security aware you are, no matter how smart you are, people are human and they make mistakes—that's an endemic problem in our industry. The other big pet peeve of mine is that all these companies invest so much in prevention and they forget about detection and response. It's 2021 and I just read a report a couple of weeks ago that the average time to discover a web vulnerability is over 200 days. That's appalling.
CISO, 201 - 500 employees
We're talking about sophisticated attacks these days and there are industries that are critical to the country but complain about basic user access review at the same time. There are COOs and CFOs saying they don't want to go through a review of who has access to what for their own direct reports. They actually want to delegate it to their secretary, it’s unbelievable.
Senior Director, Technology Solutions and Analytics in Telecommunication, 51 - 200 employees
It's possible to reduce your risk, but you have to make cybersecurity a priority in your organization.
CEO in Services (non-Government), Self-employed
Making several false assumptions:
Thinking that it can't happen to them.

Believing more frequent backups are the solution.

That ransomeware is a direct result of things like email vulnerability, when a patch/update or code in a back office system can transmit the ransomware as well.

That both ISP or MSP/SaaS are safe.
Lastly, that equipment on a factory floor is immune when it isn't.

Content you might like

Important solution for today’s way of working52%

Interesting idea to explore for 202242%

Not necessary6%


971 views1 Upvote1 Comment

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
39.8k views130 Upvotes318 Comments