Image credit: ©stock.adobe.com/au/arrow

Almost three-quarters of state and local government victims of ransomware attacks in 2021 ended up having their data encrypted by the hackers.

The figure, 72%, is 7% higher than the public/private cross-sector average, according to the State of Ransomware in State and Local Government 2022 survey issued by software company, Sophos.

That rate of encryption is one of the worst experienced across multiple sectors, reflecting poorly on governments’ preventative and response capabilities.

To make matters worse, victim organisations often ended up forking out far more dollars to recover from the situation than the hackers were seeking in their ransom demands.

“If we look at what happened with the city of Atlanta, Georgia, back in 2018, they ultimately ended up paying US$17 million to recover from an attack that asked for US$50,000 dollars in ransom,” said Chester Wisniewski, principal research scientist with Sophos.

In addition, the survey reveals that only 20% of state and local governments were able to halt a ransomware attack before their data could be encrypted.

“Traditionally, government organisations haven’t been prime targets for ransomware attackers, since they don’t have as much money as traditional businesses, and criminal groups are reticent to attract attention from law enforcement,” said Wisniewski.

“However, when these organisations do get hit, they have little in the way of protection because they don’t have the budget for additional, in-depth cybersecurity support, including threat hunting teams or security operations centres.”

The ransomware survey, which encompassed 5,600 IT professionals across 31 countries, including 199 in the state and local government sector, also found that in 2021:

The government sector experienced a drop in the amount of encrypted data recovered after paying a ransom (58%) when compared to 2020 (70%).
There was a 70% rise in the number of attacks against local government; 58% of those attacks were targeted (compared to 34% in 2020).
The cost to remediate an attack was three times the average ransom paid.

Comment below to have your say on this story.

If you have a news story or tip-off, get in touch at editorial@governmentnews.com.au.

Sign up to the Government News newsletter

Jonathan Nally

Governments fare poorly in ransomware attacks

TAGS

Leave a comment: Cancel reply

Latest comments

Sue Phillips on: 15 councils participate in SA emissions reduction trial

Garth Daddy on: War memorial contracts fudged, audit finds

Roger Buhlert on: New VLGA appointment vows to lift governance standards

Most read

Scathing report finds little has changed at PwC

Qld council welcomes progress on massive battery system

‘Local’ procurement turns out not to be so local, committee hears

MoG changes see regions, investment return to NSW Premier’s Department

15 councils participate in SA emissions reduction trial

Popular posts

Latest news

Niki Savva appointed to Board of Old Parliament House

Monitors at Glenelg reappointed amid ‘behaviours of concern’

AI picks up 2,000 road defects a week for disaster-hit NSW council

Australian healthcare expensive but good, research finds

Bureaucrats grilled over ‘fake’ govt emissions certificate during greenwash inquiry