Simon Sharwood reports:
Ransomware actors aim to spend the shortest amount of time possible inside your systems, and that means the encryption they employ is shoddy and often corrupts your data. That in turn means restoration after paying ransoms is often a more expensive chore than just deciding not to pay and working from our own backups.
That’s the opinion of Richard Addiscott, a senior director analyst at Gartner.
Read more at The Register.
The statistics from Gartner are pretty striking and of course, directly conflict with what ransomware groups assure their victims about recovery and other issues. According to Sharwood’s reporting of a talk Addiscott gave:
Restoring from corrupt data dumps delivered by crooks is not easy, Addiscott advised – and that’s if ransomware operators deliver all the data they promise. Plenty don’t – instead they use a ransom payment to open a new round of negotiations about the price of further releases.
That sort of wretched villainy means just four percent of ransomware victims recover all their data, he said. Only 61 percent recover data at all. And victims typically experience 25 days of disruption to their businesses.