Microsoft Research Shows Configuration Errors Behind Most Ransomware Attacks
Four common problems are giving cybercriminals an advantage.
According to the latest research from Microsoft, over 80% of ransomware attacks can be traced to common configuration errors in software and devices.
Microsoft’s latest edition of Cyber Signals spotlights security trends and insights which have been gathered from Microsoft’s 43 trillion security signals and 8,500 security experts.
This Microsoft research spotlights the evolving cybercrime economy and the rise of ransomware-as-a-service (RaaS).
Emily Hacker is a threat intelligence analyst at Microsoft.
Microsoft’s Emily Hacker
“Just as many industries have shifted toward gig workers for efficiency, cybercriminals are renting or selling their ransomware tools for a portion of the profits, rather than performing the attacks themselves,” she said. “The RaaS economy allows cybercriminals to purchase access to ransomware payloads and data leakage, as well as payment infrastructure. Ransomware ‘gangs’ are in reality RaaS programs like Conti or REvil, used by many different actors who switch between RaaS programs and payloads.”
Four Problems Helping Cybercriminals
This Microsoft research highlights four problems that are giving cybercriminals an advantage.
These problems are:
-
- Stolen passwords and unprotected identities
- Missing or disabled security products
- Misconfigured or abused applications
- Slow patching.
“You might use a popular app for one purpose, but that doesn’t mean criminals can’t weaponize it for another goal,” Hacker said. “Too often, ‘legacy’ configurations mean an app is in its default state, allowing any user wide access across entire organizations. Don’t overlook this risk or hesitate to change app settings for fear of disruption.”
Among the recommended solutions are: authenticating identities; addressing security blind spots; hardening internet-facing assets; and keeping all systems up to date at all times.
Security Hardening Saves Your Business Money
While many organizations consider it too costly to implement enhanced security protocols, security hardening actually saves money in the long run, according to Microsoft. Not only will systems become more secure, but an organization will spend less on security costs and less time responding to threats, leaving more time to focus on incoming incidents.
“While ransomware or double extortion can seem an inevitable outcome from an attack by a sophisticated attacker, ransomware is an avoidable disaster,” Hacker said. “Reliance on security weaknesses by attackers means that investments in cyber hygiene go a long way.”
According to Microsoft, it takes new levels of collaboration to meet the ransomware challenge. The best defenses begin with clarity and prioritization, which means more sharing of information across and between the public and private sectors, and a collective resolve to help each other make the world safer for all.
Explore Your Options for a Secure & More Reliable Network
Managed IT Professionals can help your business set up and manage multiple layers of advanced cybersecurity protection ensuring safe and reliable network operation. We can help you fully optimize your cybersecurity with top level next-generation protection throughout your office, warehouse, retail store, etc. Contact us today to schedule a free consultation! Call (201) 300-3825, contact us, or schedule a free consultation.
[custom-related-posts title=”Related Articles” none_text=”None found” order_by=”title” order=”ASC”]
We provide fast and friendly IT support to NJ/NY businesses and non-profits
Looking for Managed
IT Services?
Talk to our IT Specialist
