How to prepare for ransomware attacks

You only have to take a look at the latest headlines to see that ransomware is still having a significant impact on organizations of all sizes across a wide variety of industries. 

The threat is evolving, though. For example, some cybercriminals are now skipping the encryption step and jumping straight to extortion, demanding payment for stolen data. How attackers control the attack and how they gain access is also evolving.

According to Gartner®: “Bad actors have changed tactics and in some cases are shifting to extortionware. SRM leaders must prepare for ransomware attacks by improving their detect and prevent capabilities, but also evolve their postincident playbooks.” 1

In a recent report, “How to Prepare for Ransomware Attacks,” Gartner mentions this critical topic. The detailed report provides key findings and recommendations that we feel can help you build an effective strategy to make sure your organization is prepared before an attack occurs.

The ransomware defense lifecycle

This in-depth report walks you through all the stages of the ransomware defense lifecycle and what you need to do to navigate each step of the process. It covers topics from preparation and prevention to detecting and mitigating attacks — and when necessary recovery and root cause analysis.

• The report also includes guidance how to:
• Construct a preincident preparation strategy 
  
• Implement detection measures to identify ransomware attacks
  
• Build response procedures by training staff and running drills
  
• Develop a ransomware playbook