search menu icon-carat-right cmu-wordmark

Ransomware: Evolution, Rise, and Response

February 2021 Podcast
Marisa Midler, Timothy J. Shimeall

Marisa Midler and Tim Shimeall, analysts with the SEI's CERT Division, discuss steps and strategies that organizations can adopt to minimize their exposure to the risks and threats associated with ransomware.

“Ransomware as a service is a new business model that allows the ransomware developers to lower their risk because they are not the ones doing the attacks anymore. They are either selling the ransomware or leasing it to different attackers. And the attackers are growing because they no longer have to develop their own ransomware to form these attacks.”

Publisher:

Software Engineering Institute

Listen

Watch

Abstract

Ransomware, including ransomware-as-a-service threats, is a growing problem. Ransom payments from Quarter 3 of 2019 were on average $42,000, and in Quarter 1 of 2020, that average increased to $112,000. The volume of attacks also increased by 25 percent in Quarter 4 of 2019 and by another 25 percent in Quarter 1 of 2020. The sophistication of the attacks has increased alongside their severity. In this SEI Podcast, Marisa Midler and Tim Shimeall, analysts with the SEI's CERT Division, discuss steps and strategies that organizations can adopt to minimize their exposure to the risks and threats associated with ransomware.