Data Loss Prevention Against Ransomware
- Date:June 29, 2022
- Author(s):
- Tracy Kitten
- Report Details: 15 pages, 5 graphics
- Research Topic(s):
- Cybersecurity
- Fraud & Security
- PAID CONTENT
Overview
Ransomware attacks pose increasing risk to financial services providers and the small businesses they serve. Consumers also are now more frequently targeted by ransomware attacks, as cybercriminals shift their focus toward less suspecting, and less protected, targets. Ransomware is an interesting type of malware attack, in that criminals gain profits by extorting funds directly from their victims rather than by extracting payouts via account takeovers or scams.
While takeovers and scams can be waged against targets in tandem with ransomware attacks, the primary means of profit come directly from the ransoms paid in exchange for the return of data or access to data encrypted by criminals. Sometimes the data is returned; sometimes it is not, regardless of whether a fee is paid. This report explores the challenges financial services providers face, not only when it comes to being attacked themselves, but in the counsel and education they offer to business customers and consumers about how to defend themselves against falling victim to a ransomware attack, how to protect data from being stolen, and how to recover the data should a ransomware attack prove successful. Data loss prevention is the focus, and for financial institutions and businesses, it begins with updated disaster recovery and business continuity planning.
Key questions discussed in this report:
- How should organizations of all sizes better address data loss prevention via disaster recovery and business continuity planning?
- What vulnerabilities in endpoint security and cyber-insurance protection are attackers exploiting as part of their ransomware attacks?
- Why is paying ransoms, even when data are “recovered,” continually putting businesses at risk and posing unique concerns for financial institutions and their small-business clients?
Companies Mentioned:
Cybersecurity & Infrastructure Security Agency, Department of Treasury, Federal Bureau of Investigation, Financial Crimes Enforcement Network
Learn More About This Report & Javelin
Related content
Cyber Lessons for Mobile Banking: Connecting with Consumers, Framing Cyber Awareness
Javelin Strategy & Research sees an increased opportunity for cybersecurity awareness and engagement with consumers within mobile banking, where push notifications and alerts are a...
Wealth Accounts at Increasing Risk of Scams and Cyber Takeovers
Romance scams are hard to detect. Wealth management clients are often affected by the most devastating and nefarious types of scams—scams that are long-running and result in the pe...
Unmasking the Threat of AI: Deepfakes and Financial Security
Deepfakes fueled by AI are fast approaching being able to reliably circumvent voice biometrics authentication and facial recognition algorithms. When deepfakes cross this threshold...
Make informed decisions in a digital financial world