Given the massive impact of ransomware and malware – which increased by 700% in 2020 alone – it’s now a risk every organisation wants to avoid. But for many, the dominant ransomware mindset focuses on recovery rather than resistance.
With documents and email attachments the most successful method used to deliver ransomware and other malicious attacks, hackers are exploiting vulnerabilities in the structure of everyday files such as PDFs, Word, Excel and PowerPoint. These are now the biggest dangers to the cybersecurity of enterprises around the globe.
And with new malware variants released by cybercriminals every few seconds, reacting to the risks presents a major challenge and is where most organisations go wrong: they wait and react. The problems are made worse by the time it can take for antivirus or sandbox technologies to be updated to protect files and data from new, ‘zero day’ threats, which can be anything up to 30 days.
In the meantime, every file and document an organisation sends or receives – via email or the cloud – is at risk. If an attack is successful, the victim has to rely on backups, other recovery technologies, significant rebuilds or for some, paying the ransom is the unavoidable option. Whatever the approach, it takes an average of 280 days to contain a data breach – that’s 40 weeks or roughly 8 months or cost, inconvenience and distraction from business priorities.
Instead, recovery should be the last resort in a ransomware strategy, rather than the default tactic. The proactive approach delivered by Glasswall’s Content Disarm and Reconstruction (CDR) solutions, for instance, regenerates every file and document that comes in and out of an organisation to a safe standard of “known good” – fully in line with their published specification.
The result is organisations that can approach ransomware with a positive, proactive mindset and full confidence in the integrity and security of their files and everything they contain. As Gartner puts it: “While sandboxing and almost all other techniques depend on detection of behaviors, CDR protects against exploits and weaponised content that have not been seen before.”
Gartner examines the role and impact of CDR in more detail in its 2020 ‘Hype Cycle For Network Security’. To download a free copy of the report, click here.