How do you prepare for a threat that’s constantly evolving? Ransomware attacks are surging, targeting organizations of all sizes, from school districts to hospitals. In a recent conversation for our Executive Exchange series, Druva CTO Stephen Manley estimates that attacks are increasing by 20–50% each year. The attack methodology is evolving, too: Rather than immediate disruption, attackers now exhibit “dwell times well over 200 days” from initial access to deployment of ransomware.
To combat these attacks, Manley recommends following a three-pronged proactive approach:
Develop an integrated recovery plan where security and IT teams collaborate closely to ensure a clean environment before data restoration.
Test the plan religiously. During a crisis, your plan should be muscle memory rather than theory.
Prioritize critical data. Focusing on recovering essential systems can minimize downtime during an attack.
Employees remain the primary target, and cybercriminals are using increasingly sophisticated social engineering tactics to compromise identities and exfiltrate data before demanding ransom. That’s why Manley emphasizes educating employees on why security protocols matter and encouraging them to question suspicious requests.
Watch the full video above to learn more about proactive ransomware strategies, actions to take when an attack occurs, and emerging trends like generative AI and quantum computing.
