A recent study by the Canadian Internet Registry Authority (CIRA) revealed that many businesses that were target by a ransomware attack felt they had no other choice but to either get stolen data back or get their data decrypted.
Indeed, 69% of the organizations surveyed said that they paid the ransom while 59% stated that data was exfiltrated in the attack. Yet, 64% still support legislation to forbid paying ransom demands as most organizations are doing so in order to avoid damaging their public image.
It was also found out that almost all businesses will be adopting permanently their COVID-19-related cybersecurity protections and will be organizing cybersecurity awareness training for their employees.
Besides, most organizations will be creating training material and promote it internally, as well as conducting phishing simulations. Organizations will also invest in cybersecurity insurance and will have a cyber security-specific policy.