Ransomware Epidemic Must Be Tackled at a Human Level

As intelligence chiefs around the world declare war on ransomware, training and individual responsibility provide crucial protection, says Questionmark

Intelligence leaders at America’s National Security Agency and the UK’s National Cyber Security Centre (NCSC)2 have declared ransomware the top cybersecurity threat in 2021.

Questionmark, the online assessment provider, says it is time to end the era of internet ignorance, and tackle the growing ransomware threat through staff assessments and training.

Research shows, when it comes to cybersecurity, the weak link in the chain is human decision-making. A recent study found the overwhelming majority (79 percent) of employees engaged in at least one risky activity in the past year. Only one in six (16 percent) felt their organization is at very high risk of cybersecurity attack.

HR Technology News: Penny Queller Joins Impellam Group as Chief Customer Officer

In stark contrast, the cyber threat could not be more real. IT security professionals in one paper revealed that almost nine out of 10 (88 percent) felt the threat of ransomware was a concern, and one in three (35 percent) said their organization had already been a victim.4 The cost of such attacks is also on the rise: it has been estimated that ransomware attacks in education cost on average $2.73 million, ahead of financial services attacks at $2m and healthcare at $1.3m.5

John Kleeman, Founder of Questionmark, said: “This has been the year of ransomware, with major stories dominating the press from the start. The common factor in most ransomware attacks is they originate with an often very simple human error, such as an insecure password or a member of staff downloading material from email or the internet. Senior leaders can use assessment tools to gauge cyber hygiene across the organization and design training to end the era of internet ignorance.”

HR Technology News: Workato Targets to Double Its Asia Pacific Workforce After Being Accredited by IMDA

With the Questionmark platform, employers can create assessments that test the cybersecurity knowledge of their workers. These tests can measure the extent to which team members understand relevant organizational security policies. Leaders can be confident that their people know what is expected of them.

HR Technology News: Workday Announces Almost 1,000 Customers Already on Skills Cloud

To share your insights with us, please write to sghosh@martechseries.com