Skip to main content
close search
site logo
Dive Brief

Will GDPR lead to an uptick in ransomware?

Published Feb. 20, 2018
By
Associate Editor
Kaspersky Lab

Dive Brief:

  • Malicious actors will try to use GDPR to their advantage come May 25 by attacking an organization, figuring out what its GDPR penalty would amount to and demanding a ransom slightly lower than the penalty in the hopes that the C-suite will opt to brush the incident under the rug, according to a Trend Micro announcement.
  • Ransomware families cost the world an estimated $5 billion in 2017, and three of the top families in 2016 carried over into the next year: Locky, Cerber and Cryptesla. But as the number of ransomware families increased 32% year-over-year from 247 to 327, the number of players decreased, according to Trend Micro's 2017 cyberthreats report.
  • Business email compromise scams more than doubled between the first and second half of 2017, with almost 40% of attacks spoofing the CEO. CFOs were the most targeted individuals overall. 

Dive Insight:

The European Union's intention is to improve accountability for data and security breaches, and the potential for more cyberattacks as a result of the high GDPR fines' is quite the unintended consequence.

While, in theory, a compliant organization should have less to worry about if it has a comprehensive data protection plan in place, at the end of the day, cybercriminals make their living off of finding those tiny loopholes and gaps in security.

Reaching GDPR compliance can already be a years-long, costly endeavor for companies. To mitigate this associated increased threat, business leaders need to also work on reducing entry points for attackers. Starting with something as simple as employee training on business email scams, which continue to plague organizations despite widespread attention on the issue, could make all the difference in the long run. 

After all, if the historical trend of cybersecurity problems is to continue, 2018 could be a dangerous year. The severity of cyberattacks in 2017 was made clear by the fact that the number of affected records increased by roughly 1.6 billion as the number of disclosures decreased 32% year-over-year, according to the report. 

Building up a bitcoin aresenal to pay ransoms under the table may be alluring, but no secret is safe from coming out — just ask Uber. In the meantime, improving and teaching best security practices and updating that cyber insurance policy should be higher priorities for CIOs.

Recommended Reading

Filed Under: IT Strategy, Security

Editors' picks

Company Announcements

View all | Post a press release
TrustNet Named 2024’s Best Compliance Advisory and Audit Firm at CDM’s Annual Top InfoSec Inno…
From TrustNet
November 06, 2024
Newgen Recognized in Gartner® Magic Quadrant™ for Enterprise Low-code Application Platforms Fi…
From Newgen Software
October 30, 2024
truCX Launches Groundbreaking Partner Portal, Empowering CX Consultants and Trusted Advisors w…
From truCX
October 30, 2024
Blackpoint Cyber Launches Global Partner Program and Enablement Platform Emphasizing a Focus o…
From Blackpoint Cyber
October 30, 2024
Editors' picks
Latest in IT Strategy
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell