The Challenges Feds Face on Combating Ransomware
According to the survey, 78 percent of respondents believe ransomware and malware will continue to be a growing concern in the next 12 months.
“Ransomware attacks are only getting worse. The actors are shifting their business models and going to more coordinated attacks like we saw in Texas,” Chris Krebs, director of DHS’ Cybersecurity and Infrastructure Security Agency, says in the survey’s report.
Government agencies face numerous external and internal challenges to guard against ransomware and malware threats. These challenges include the evolving sophistication of attacks (cited by 57 percent of respondents), the growing proliferation of attacks (49 percent), poor user awareness (44 percent), and a lack of budget (42 percent).
One-fifth of federal respondents reported that it would take more than a day to recover data following a ransomware attack, and 8 percent reported it would take more than a week. “As agency services depend increasingly on real-time data, leaders may need to reassess whether their backup and recovery strategies meet emerging threats,” the survey report notes.
Half of survey respondents said their agencies have procedures in place to recover or isolate data in the event of a ransomware or malware attack. However, fewer respondents (35 percent) said they have procedures to notify law enforcement and engage cybersecurity specialists, “suggesting agencies’ ransomware response plans remain incomplete,” the report states.
More than 7 in 10 agency respondents said their agencies use data backup and recovery tools and anti-virus and/or endpoint security solutions to combat ransomware and malware threats.
However, the report notes that to combat the threat of ransomware, federal and state cybersecurity experts stress that agencies should make sure they back up critical systems and configurations daily on a separate device; expand employee training to recognize phishing attempts and suspicious links; and revise incident response plans that treat cyberattacks more like disasters.