Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Career Intelligence
    • Cyber Tactics
    • Cybersecurity Education & Training
    • Leadership & Management
    • Security Talk
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Interactive Spotlight
    • Photo Galleries
    • Podcasts
    • Polls
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecuritySecurity NewswireCybersecurity News

80% of executives will consider paying the ransom

ransomware cyber freepik
October 20, 2021

A new Report, “Ransomware in Focus,” based on a survey of more than 250 Chief Information Security Officers (CISOs), cited ransomware as the #1 threat facing businesses and one of the primary CISO concerns for the next 12 months, with many believing an attack is inevitable. Fifty-three percent of respondents were hit in the past year, with 69% saying they’ll likely be successfully attacked at least once in the next year. Tthese percentages increase to 66% and 80%, respectively, when segmented for mid-sized organizations.


Ransomware in Focus uncovers the financial impact, buying decisions and business processes that these attacks have driven. The study was conducted by CISOs Connect, AimPoint Group and W2 Communications. “Since the start of 2020, criminals have been doubling down on ransomware, making it a mainstream issue impacting supply chains and business operations across industries,” stated Aimee Rhodes, CEO and Founder of CISOs Connect. “The good news is that CISOs are proactively taking steps to address these attacks. Their organizations’ ransomware concerns are acting as a catalyst to enable them to budget for new technologies and initiatives. But, challenges, as cited by the CISOs themselves, still exist. Our research indicates a number of areas that require increased and immediate attention.”


Ransomware Drives Budgeting Priorities

According to respondents, ransomware has been a driving force for gaining the CISO a seat in the board room. It has also informed priorities and buying decisions. Not surprisingly, data backup and recovery is considered by many CISOs to be the most important countermeasure for defending against ransomware, followed by technical controls and practices for addressing endpoint, email, and user vulnerabilities, where some of the greatest risks are found. In addition, the CISOs emphasized the importance of zero trust architectures as a critical defense. The research backed this sentiment, which showed network segmentation ranking as the top investment priority for the coming year.


While they are planning for these investments, the CISOs also indicated that challenges with existing solutions are standing in the way of greater progress. Difficulty implementing related tools and technologies and the availability of effective anti-ransomware solutions rank as the biggest obstacles. The global cybersecurity talent shortage and ‘other conflicting priorities’ also ranked high on CISOs lists of challenges. As noted in the report, this is an area where emerging approaches such as Managed Detection and Response (MDR) can offer important alternatives.


The Cost of An Attack

While paying the ransom remains controversial and is subject to rigorous internal debate, CISOs are equally concerned with the financial impact of restoring business operations. This is understandable when the total cost of an attack, including mitigation, recovery and possible payments, can total in the millions. According to respondents, there’s a 20% chance of paying more than $5 million and a 5 percent chance that the impact could be greater than $50 million.


Preparedness is Limited

Even with the knowledge that they are being targeted and that the costs, if hit, can be in the millions, most CISOs admit they are not prepared to make an actual ransom payment. Few indicate their organization has taken proactive steps like allocating a ransom budget, setting up a cryptocurrency account or retaining a third-party payment broker. However, fifty-five percent have taken the step to purchase ransomware insurance - the majority of whom are at larger organizations, again leaving smaller organizations more vulnerable.


Rhodes concluded: “Our data shows that while ransomware is driving a number of CISO initiatives and planning, many of the efforts may still be siloed. This creates certain areas of exposure, which could cause issues as these attacks continue to accelerate. Based on the CISOs’ feedback, many would benefit from a more holistic approach that prepares them to not only prevent and detect ransomware, but also for the possible financial impact.”

To access the complete report, please visit: https://securitycurrent.com/ransomware-in-focus/

KEYWORDS: cyber security information security ransomware risk management

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Cyber tech background

    Security’s Top Cybersecurity Leaders 2026

    Security magazine’s Top Cybersecurity Leaders 2026 award...
    Cybersecurity
  • Iintegration and use of emerging tools

    Future Proof Your Security Career with AI Skills

    AI’s evolution demands security leaders master...
    Security Leadership and Management
    By: Jerry J. Brennan and Joanne R. Pollock
  • The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report surveys enterprise...
    The Security Benchmark Report
    By: Rachelle Blair-Frasier
Manage My Account
  • Security Newsletter
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

Hand reaching up out of the ocean

What I Learned About Burnout the Hard Way (and How to Actually Fix it)

Broken wet floor sign

Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security

Paparazzi

When Private Events Become Public Infrastructure: What Celebrity OSINT Teaches Security Leaders

Cyber Tactics

AIBOMs: Bringing AI Security Out of the Shadows, A Practical Guide for Security Professionals

Medical professional

Nearly 85% of Nurses Experienced Workplace Violence in the Last Year

Kaseware sponsored webinar
Schneider Electric sponsored webinar

Events

August 25, 2026

Critical Infrastructure Security Is National Security: Protecting Essential Operations in an Era of Escalating Risk

LIVE: August 25, 2026 at 2 PM EDT Learn why critical infrastructure security has become a national security imperative, and the strategies organizations can adopt to improve visibility, collaboration, and response across their security operations.

August 27, 2026

Leveraging AI & Mobility to Advance Your Security Domain

LIVE: August 27, 2026 at 2 PM EDT Explore how AI-driven cloud security solutions can elevate your security domain enhancing threat detection, streamlining operations, and delivering the resilience modern organizations demand.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products


Alertmedia sponsored webinar

Related Articles

  • people working at long desk together

    69% of organizations facing ransomware attacks paid the ransom

    See More
  • cyberinsurance

    Just Paid the Ransom? Here’s How to Prevent It From Happening Again

    See More
  • Campus security to be revisited at San Jose School District

    San Jose Unified School District will consider bringing police back to campus security

    See More

Related Products

See More Products
  • The Database Hacker's Handboo

  • Risk Analysis and the Security Survey, 4th Edition

  • Physical Security and Safety: A Field Guide for the Practitioner

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • Newsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2026. All Rights Reserved BNP Media, Inc. and BNP Media II, LLC.

Design, CMS, Hosting & Web Development :: ePublishing